Chapter 4 Understanding Attack Descriptions - McAfee M-1250 - Network Security Platform Configuration Manual
Ips configuration guide version 5.1
Hide thumbs
Also See for M-1250 - Network Security Platform:
- Upgrade manual (58 pages) ,
- Deployment manual (36 pages) ,
- Manual (32 pages)
Table of Contents
Advertisement
C
4
H A P T E R
Understanding attack descriptions
Every attack detected by McAfee
description. The information in each attack description is designed to give reference to
what the attack does and how to defend against the attack in the future.
Attack descriptions can be accessed from a number of areas:
•
Policy:
during policy viewing/creation. Includes all Exploit, DoS, and Reconnaissance
attacks.
•
Threat Analyzer
•
Network Security Platform KnowledgeBase
When you click an Attack Description button, a HTML file opens in an Internet Explorer
browser window.
Figure 234: Attack Description Example
The Attack Information & Description fields are as follows:
•
Name
: McAfee Network Security Platform-designated name for an attack.
•
Vulnerability Type
•
Impact Category
•
Impact Subcategory
•
Severity
®
Network Security Platform includes an attack
: within the details of a detected attack.
: type of inherent system flaw that can be exploited by attackers.
: type of impact that can be performed to a system.
: type of inherent system flaw that can be exploited by attackers.
: malicious impact potential of the attack. High, Medium, Low.
242
: all entries within the Attack Encyclopedia.
Advertisement
Table of Contents
