ET EXPLOIT Possible Cisco IKEv1 Information Disclosure Vulnerability CVE-2016-6415

SID: 2023311Rev: 17 viewsHistory

Sourceet/open

CreatedSeptember 29, 2016

UpdatedJuly 26, 2019

Classificationattempted-user

alert udp $EXTERNAL_NET any -> $HOME_NET 500 (msg:"ET EXPLOIT Possible Cisco IKEv1 Information Disclosure Vulnerability CVE-2016-6415"; dsize:>828; content:"|00 00 00 00 00 00 00 00 01 10|"; offset:8; depth:10; content:"|80 02 00|"; distance:30; byte_test:1,<,3,0,relative; byte_test:1,>,0,0,relative; content:"|80 04 00 01 00 06|"; distance:1; within:6; fast_pattern; byte_test:2,>,768,0,relative; reference:cve,2016-6415; classtype:attempted-user; sid:2023311; rev:1; metadata:affected_product Cisco_PIX, attack_target Networking_Equipment, created_at 2016_09_29, cve CVE_2016_6415, deployment Datacenter, performance_impact Low, confidence Medium, signature_severity Major, tag CISA_KEV, updated_at 2019_07_26, mitre_tactic_id TA0007, mitre_tactic_name Discovery, mitre_technique_id T1082, mitre_technique_name System_Information_Discovery;)

References

cve

2016-6415

Metadata

affected productCisco_PIX

attack targetNetworking_Equipment

created at2016_09_29

cveCVE-2016-6415

deploymentDatacenter

performance impactLow

confidenceMedium

signature severityMajor

tagCISA_KEV

updated at2019_07_26

mitre tactic idTA0007

mitre tactic nameDiscovery

mitre technique idT1082

mitre technique nameSystem_Information_Discovery

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!