Cisco Cisco Firepower Management Center 4000 Developer's Guide
Version 5.3
Sourcefire 3D System eStreamer Integration Guide
294
Understanding Discovery & Connection Data Structures
Host Discovery and Connection Data Blocks
Chapter 4
The
table describes the components of the
Host Vulnerability data block.
Identity Data Block
The identity data block has a block type of 94 in the series 1 group of blocks.
Identity data blocks are used in identity conflict and identity timeout messages,
which indicate when the identities of an operating system or server fingerprint
source conflict or time out. The data block describes reported identities that have
been identified as being in conflict with active source identities (user, scanner, or
been identified as being in conflict with active source identities (user, scanner, or
application). For more information, see
Host Vulnerability Data Block Fields
F
IELD
D
ATA
T
YPE
D
ESCRIPTION
Host
Vulnerability
Block Type
uint32
Initiates an Host Vulnerability data block. This
value is always 85.
Host
Vulnerability
Block Length
uint32
Total number of bytes in the Host Vulnerability
data block, including eight bytes for the host
vulnerability block type and length fields, plus
the number of bytes of host vulnerability data
that follows.
Host
Vulnerability ID
uint32
The identification number for the vulnerability.
Invalid Flags
uint8
A value indicating whether the vulnerability is
valid for the host.
Type
uint32
The type of vulnerability.