https://community.cisco.com/t5/network-security/monitor-or-span-port-vulnerablility/m-p/742057#M86702 <HTML><HEAD></HEAD><BODY><P>It's very unlikely, but not impossible. Snort's had a few and the general concept is applicable to any IDS. If you suck in data off the network and process it, there's the potential for vulnerabilities. If you're worried about it, put the management interface in a management dmz.</P><P></P><P><A class="jive-link-custom" href="http://www.infoworld.com/article/03/03/04/HNsnort_1.html" target="_blank">http://www.infoworld.com/article/03/03/04/HNsnort_1.html</A></P></BODY></HTML> Fri, 18 May 2007 12:18:25 GMT mhellman 2007-05-18T12:18:25Z https://community.cisco.com/t5/network-security/monitor-or-span-port-vulnerablility/m-p/742056#M86701 <P>Is the CISCO IDS/IPS device connecting to Monitor or SPAN port Vulnerable? Is there a document which I can refer to ?</P> Sun, 10 Mar 2019 10:36:48 GMT https://community.cisco.com/t5/network-security/monitor-or-span-port-vulnerablility/m-p/742056#M86701 sagittarius 2019-03-10T10:36:48Z https://community.cisco.com/t5/network-security/monitor-or-span-port-vulnerablility/m-p/742057#M86702 <HTML><HEAD></HEAD><BODY><P>It's very unlikely, but not impossible. Snort's had a few and the general concept is applicable to any IDS. If you suck in data off the network and process it, there's the potential for vulnerabilities. If you're worried about it, put the management interface in a management dmz.</P><P></P><P><A class="jive-link-custom" href="http://www.infoworld.com/article/03/03/04/HNsnort_1.html" target="_blank">http://www.infoworld.com/article/03/03/04/HNsnort_1.html</A></P></BODY></HTML> Fri, 18 May 2007 12:18:25 GMT https://community.cisco.com/t5/network-security/monitor-or-span-port-vulnerablility/m-p/742057#M86702 mhellman 2007-05-18T12:18:25Z