An Approach for Internal Network Security Metric Based on Attack Probability

<table class="fixed-width table-group" id="tab3"><tr><td><table class="table"><colgroup><col style="width:3.20em"/><col style="width:9.08em"/><col style="width:19.11em"/><col style="width:7.87em"/></colgroup><tr><td class="thead-hr" colspan="4"><hr/></td></tr><tr class="thead"><td class="align_left">Host</td><td class="align_center">Name of software</td><td class="align_center">Vulnerability description</td><td class="align_center">CVE ID</td></tr><tr><td class="thead-hr" colspan="4"><hr/></td></tr><tr><td class="align_left">H1</td><td class="align_center">BIND 9</td><td class="align_center">Stack buffer overflow vulnerability</td><td class="align_center">CVE-2015-7547</td></tr><tr><td class="align_left">H2</td><td class="align_center">IIS 7.0</td><td class="align_center">IIS Buffer Overflow Vulnerability</td><td class="align_center">CVE-2008-0075</td></tr><tr><td class="align_left" rowspan="2">H3</td><td class="align_center" rowspan="2">OPENSSH<br/>(SSH2)</td><td class="align_center">Mode information disclosure vulnerability</td><td class="align_center">CVE-2008-5161</td></tr><tr><td class="align_center">Local privilege elevation vulnerability</td><td class="align_center">CVE-2007-2063</td></tr><tr><td class="align_left" rowspan="2">H4</td><td class="align_center" rowspan="2">OPENSSH<br/>(SSH2)</td><td class="align_center">Mode information disclosure vulnerability</td><td class="align_center">CVE-2008-5161</td></tr><tr><td class="align_center">Local privilege elevation vulnerability</td><td class="align_center">CVE-2007-2063</td></tr><tr><td class="align_left" rowspan="2">H5</td><td class="align_center" rowspan="2">Ser-U<br/>10.5.0.19</td><td class="align_center">Read the vulnerability</td><td class="align_center">CVE-2015-7601</td></tr><tr><td class="align_center">FTP buffer overflow vulnerability</td><td class="align_center">CVE-2015-7768</td></tr><tr><td class="align_left" rowspan="2">H6</td><td class="align_center" rowspan="2">SQLServer<br/>2005</td><td class="align_center">Buffer Overflow Vulnerability</td><td class="align_center">CVE-2008-0086</td></tr><tr><td class="align_center">Information disclosure and buffer overflow vulnerability</td><td class="align_center">CVE-2008-0106</td></tr><tr class="table-tr"><td colspan="4"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

<div>The vulnerability information for each terminal.</div>

Security and Communication Networks

tab3

Table 3

Table 3: An Approach for Internal Network Security Metric Based on Attack Probability 