Cisco Cisco Firepower Management Center 4000 Entwickleranleitung

Version 5.3

Sourcefire 3D System eStreamer Integration Guide

331

Understanding Discovery & Connection Data Structures

Host Discovery and Connection Data Blocks

Chapter 4

Full Host Client Application Data Block 5.0+

The Full Host Client Application data block for version 5.0+ describes a client 

application, plus an appended list of associated web applications and 

vulnerabilities. The Full Host Client Application data block is used within the Full 

Host Profile data block (type 111). It has a block type of 112 in the series 1 group 

of blocks.

Description 

Clean

string

Description of the vulnerability (unformatted).

List Block 

Type

uint32

Initiates a List data block for the list of Bugtraq 

identification numbers.

List Block 

Length

uint32

Number of bytes in the List data block for the list 

of Bugtraq identification numbers, including eight 

bytes for the string block type and length, plus 

the number of bytes in the Integer data blocks 

containing the Bugtraq IDs.

Bugtraq ID

string

Contains zero or more Integer (INT32) data blocks 

that form a list of Bugtraq identification numbers. 

For more information on these data blocks, see 

List Block 

Type

uint32

Initiates a List data block for the list of Common 

Vulnerability Exposure (CVE) identification 

numbers.

List Block 

Length

uint32

Number of bytes in the List data block for the 

CVE identification number, including eight bytes 

for the string block type and length, plus the 

number of bytes in the CVE identification 

number.

CVE ID

string

Contains zero or more String Information data 

blocks that form a list of CVE identification 

numbers. For more information on these data 

blocks, see 

Scan Vulnerability Data Block Fields (Continued)