Cisco Cisco IPS 4345 Sensor
58
Release Notes for Cisco Intrusion Prevention System 7.1(3)E4
OL-25881-01
Caveats
•
CSCts98784—IPS SSP collaborationApp core
•
CSCts40616—IPS SSP sensorApp core due to buffer overflow errors
•
CSCtg50681—Sensor Upgrade failure. \"ExecUpgradeSoftware: < > already installed\"
•
CSCtg73897—SendAckLimiter: repair ReportInterval issue and improve stats collection
•
CSCti70744—IPS sensor unable to copy current-config
•
CSCtj04994—IDS: service aaa creates local user accounts with invalid characters
•
CSCtj51386—sensor out of storage space due to global-correlation log
•
CSCtn11478—IDS - ATOMIC.ARP engine creates phantom duplicate signatures upon edit
•
CSCto62559—RADIUS sends an empty calling-station-id for HTTP/HTTPS authentication
•
CSCto77871—Sensor health status for missed packets is incorrect
•
CSCtq00491—Sensor health for signature updates is incorrect
•
CSCtq95375—radius module should handle multiple cisco-av-pair responses
•
CSCts21378—normalizer signature 1330.12 drops legit reset packet and keeps tracking
•
CSCts58648—Old SMB engine should not be allowed to run
•
CSCts70337—IPS SSP crash in sensor app(AlarmDBProcessor::lookupRootNode hashtable)
•
CSCsv26568—IPS SNMP InterfaceGroup OID does not show correct Virtual Sensor
•
CSCta43555—Network Security Level not functioning
•
CSCtf02842—ntp daemon may lose synchronization with server
•
CSCtg22175—fast retransmit ACK swaps mac address for multicast traffic
•
CSCtg22575—Unexpected Behavior using Exact-Match-Offset In Atomic ip
•
CSCto97367—Incorrect behaviour while changing cisco password
•
CSCtn56839—IPS interface can be configured as promisc and VLAN-pair at same time
•
CSCtj93001—Invalid card type error logged in by sensor for SSP-IPS40
•
CSCtj31566—SSH TCP port forwarding is enabled - x86 Only
•
CSCsk85023—Need a way to disable weak ciphers for HTTPS access to the sensor.
•
CSCsu08529—Enh: IPS Add SNMP support for a subset of Health Statistics
•
CSCti49271—inline IPS stops traffic after reset in redundant environment (e1000)
•
CSCto51204—authentication attemptLimit leaks file handles and hangs mainApp for x86
Unresolved Caveats
The following issues are unresolved in IPS 7.1(3)E4:
•
CSCtt10189—LSI insufficient resource error not throttled in main.log - Spyker
•
CSCtt43148—Unable to configure IPS from IDM {Error- Unauthorized component Edit}
•
CSCtu85641—Custom sigs- string-xl-icmp/string-icmp engine not working for icmp-type
•
CSCts72622—Cleared CLI ID's not being cleaned up
•
CSCtu75883—Deny-Attacker-ServicePair InLine does not show denied attackers -IPv6
•
CSCtw56890—IDM documentation is missing reference to permit-packet-logging av pair