Manualshelf

Release Notes

ManualsBrandsCisco ManualsSecurity SystemCisco IPS 4255 Sensor
29303132333435363738
35
Release Notes for Cisco Intrusion Prevention System 5.1(7)E1
OL-8492-01
Caveats
CSCsi15321—Signatures 5745 and 5746 context captures 9 digits instead of 10
CSCsi15449—retiring signatures does not stop inspection
CSCsi17548—Tcp Syn Cookies do not appear to work
CSCsi17610—When leaving backlog level 3
CSCsi23979—4250-xl locks up with 1 gig 256 byte ixia traffic
CSCsi42159—IPS mainapp memory leak due to SNMP
CSCsi56448—5.1(5)E1 Service Pack can not install on top of 5.1(1p1)
CSCsi58642—IDM does not handle slash in a user name correctly
CSCsi72263—Allow inline Asymmetric traffic
CSCsi86391—smb engine generating alert with bad xml
CSCsi87943—traffic conditions can stimulate small memory leak in inspector SNMP
CSCsj03849—4260 not responding after system reimage
CSCsj17459—low-end sensor out of memory during sigupdate
CSCsj41582—IPS 5.1(5)E1 UDP-string engine does not distinguish direction
CSCsj49738—IPS 5.1 AIP-SSM Performance - Dropping packets at low throughput
CSCsj49923—SenorApp may stop responding shortly after startup
CSCsj74455—service pack install should preserve sensorApp.conf
CSCsj80570—Add cidDump to upgrades
CSCsk07649—add sensorApp.conf token to bypass GRE inspection
CSCsk09897—IPS: sends ACK with destination mac of orignal packet
CSCsk27436—sigupdate hangs on 5.1(6.20)-bad matrix prune fix
Known Caveats
The following known issues are found in IPS 5.1(7)E1:
CSCsc23261—No error for unauthoriszed sigupdate push upgrade attempt
CSCse38575—Sigid 2004 does not fire on ping packets above 65502 Bytes
CSCsg09619—IPS accepts RSA keys with exponent 3 which are vulnerable to forgery
CSCsg18379—MainApp core due to XML Parsing Error
CSCsg20868—4260 platform cannot recognize 4260 specific packages for autoupgrade
CSCsg21826—CISCO-CIDS-MIB v3.5 does not have denyPacket and blockHost defined
CSCsg26929—Interface errors when enabled in cli and ifconfig up
CSCsg59161—NAC: never-block-networks config fails to stop hosts from being blocked
CSCsg96871—AnalysisEngine InspectorServiceAICWeb::ToServiceInspect abort
CSCsh41862—IDSM2 does not send reboot msg when doing an upgrade with 5.1(5)E2
CSCsh45936—Leading Space in the uri-regex in Service-HTTP Works Ambiguously
CSCsh50205—IPS 5.1(4) 4215 imaged as CF based system because of HD failure
CSCsh50516—IPS Fails to remove blocking if the blocked host is in PIX's name list