Guest

Preview Tool

Cisco Bug: CSCur00552 - IPS evaluation for CVE-2014-6271 and CVE-2014-7169

Last Modified

Nov 24, 2016

Products (11)

  • Cisco IPS 4200 Series Sensors
  • Cisco ASA 5555-X IPS Security Services Processor
  • Cisco IPS 4345 Sensor
  • Cisco ASA 5545-X IPS Security Services Processor
  • Cisco IPS 4520 Sensor
  • Cisco ASA 5525-X IPS Security Services Processor
  • Cisco IPS 4510 Sensor
  • Cisco ASA 5515-X IPS Security Services Processor
  • Cisco IPS 4360 Sensor
  • Cisco ASA 5585-X IPS Security Services Processor
View all products in Bug Search Tool Login Required

Known Affected Releases

6.2(5)E 7.0(1)E3 7.0(2)E3 7.0(2)E4 7.0(4)E4 7.0(5)E4 7.0(6)E4 7.0(7)E4 7.0(8)E4 7.0(9)B 7.1(1)E4 7.1(2)E4 7.1(3)E4 7.1(4)E4 7.1(5)E4 7.1(6)E4 7.1(7)E4 7.1(8)E4 7.2(1)E4 7.2(2)E4 7.3(1)C 7.3(2)E4

Description (partial)

Symptom:

The Cisco Intrusion Prevention System Solutions (IPS) includes a version of bash that is affected by the vulnerabilities
identified by the Common Vulnerability and Exposures (CVE) IDs:

CVE-2014-6271
CVE-2014-7169

This bug has been opened to address the potential impact on this product.



Conditions:

Exposure is not configuration dependant.
Authentication is required to exploit this vulnerability.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.