CVE-2011-4022

Published: May 3, 2012Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The sensor in Cisco Intrusion Prevention System (IPS) 7.0 and 7.1 allows remote attackers to cause a denial of service (file-handle exhaustion and mainApp hang) by making authentication attempts that exceed the configured limit, aka Bug ID CSCto51204.

Affected (2)

Products: Cisco: Intrusion Prevention System

1 product

Intrusion Prevention System

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Cisco Intrusion Prevention System	Version 7.0
Cisco Intrusion Prevention System	Version 7.1

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (2)

http://www.cisco.com/web/software/282549709/56954/IPS-7-1-3-E4_readme.txt

Source: psirt@cisco.com

http://www.cisco.com/web/software/282549709/56954/IPS-7-1-3-E4_readme.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.