{"id":131,"date":"2007-02-14T09:21:33","date_gmt":"2007-02-14T08:21:33","guid":{"rendered":"http:\/\/security-planet.de\/?p=129"},"modified":"2007-02-14T09:21:33","modified_gmt":"2007-02-14T08:21:33","slug":"verwundbarkeiten-im-ios-ips","status":"publish","type":"post","link":"https:\/\/cyber-fi.net\/index.php\/2007\/02\/14\/verwundbarkeiten-im-ios-ips\/","title":{"rendered":"Verwundbarkeiten im IOS-IPS"},"content":{"rendered":"<p>Da habe ich erstmal einen guten Schreck bekommen: &#8220;<a href=\"http:\/\/www.cisco.com\/en\/US\/products\/products_security_advisory09186a00807e0a5b.shtml\">Cisco Security Advisory: Multiple IOS IPS Vulnerabilities<\/a>&#8220;.<br \/>\nZwei heftige Bugs befinden sich im IOS-IPS (welches bei mir auch in Betrieb ist). Eine L\u00fccke, die IDS-Evasion erm\u00f6glicht und eine DOS-L\u00fccke in der Verarbeitung von Regular Expressions in der Atomic.TCP-Engine.<br \/>\nErstaunlicherweise ist diese L\u00fccke schon in IOS-Versionen geschlossen, die seit ca. einem Jahr herausgegeben werden. Da wurde wohl in einer der vielen internen \u00dcberarbeitungen des IOS-IPS automatisch der Fehler behoben, ohne dass es Cisco gemerkt hat.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Da habe ich erstmal einen guten Schreck bekommen: &#8220;Cisco Security Advisory: Multiple IOS IPS Vulnerabilities&#8220;. Zwei heftige Bugs befinden sich im IOS-IPS (welches bei mir auch in Betrieb ist). Eine L\u00fccke, die IDS-Evasion erm\u00f6glicht und eine DOS-L\u00fccke in der Verarbeitung von Regular Expressions in der Atomic.TCP-Engine. Erstaunlicherweise ist diese L\u00fccke schon in IOS-Versionen geschlossen, die <\/p>\n<div class=\"read-more-text\"><a href=\"https:\/\/cyber-fi.net\/index.php\/2007\/02\/14\/verwundbarkeiten-im-ios-ips\/\" class=\"read-more\">continue reading<\/a><\/div>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"twitterCardType":"","cardImageID":0,"cardImage":"","cardTitle":"","cardDesc":"","cardImageAlt":"","cardPlayer":"","cardPlayerWidth":0,"cardPlayerHeight":0,"cardPlayerStream":"","cardPlayerCodec":"","footnotes":""},"categories":[5,7],"tags":[307,316],"class_list":["post-131","post","type-post","status-publish","format-standard","hentry","category-cisco","category-cisco-security","tag-ios","tag-ips"],"_links":{"self":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/posts\/131","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/comments?post=131"}],"version-history":[{"count":0,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/posts\/131\/revisions"}],"wp:attachment":[{"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/media?parent=131"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/categories?post=131"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cyber-fi.net\/index.php\/wp-json\/wp\/v2\/tags?post=131"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}