Lucene search

CiscoCISCO-SA-20111005-FWSM

HistoryOct 05, 2011 - 4:00 p.m.

Multiple Vulnerabilities in Cisco Firewall Services Module

2011-10-0516:00:00

tools.cisco.com

7.9 High

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.0%

JSON

The Cisco Firewall Services Module (FWSM) for the Cisco Catalyst 6500
Series switches and Cisco 7600 Series routers is affected by the following
vulnerabilities:

Syslog Message Memory Corruption Denial of Service
Vulnerability

Authentication Proxy Denial of Service Vulnerability

TACACS+ Authentication Bypass Vulnerability

Sun Remote Procedure Call (SunRPC) Inspection Denial of Service
Vulnerabilities

Internet Locator Server (ILS) Inspection Denial of Service
Vulnerability

These vulnerabilities are not interdependent; a release that is
affected by one vulnerability is not necessarily affected by the others.

Cisco has released software updates that address these vulnerabilities. Workarounds are available for some of the vulnerabilities
disclosed in this advisory.

This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111005-fwsm[“[[Publication_URL]]”].

Note: Cisco ASA 5500 Series Adaptive Security Appliances and the Cisco
Catalyst 6500 Series ASA Services Module are affected by some of the
vulnerabilities described in this advisory. A separate Cisco Security Advisory
has been published to disclose these and other vulnerabilities that affect the
Cisco ASA 5500 Series Adaptive Security Appliances and the Cisco Catalyst 6500
Series ASA Services Module. The advisory is available at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111005-asa[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111005-asa”].

Affected configurations

Vulners

Node

ciscofirewall_services_moduleMatchany

ciscoadaptive_security_appliance_softwareMatch7.2

ciscoadaptive_security_appliance_softwareMatch8.0

ciscoadaptive_security_appliance_softwareMatch8.2

ciscoadaptive_security_appliance_softwareMatch8.1

ciscoadaptive_security_appliance_softwareMatch8.3

ciscoadaptive_security_appliance_softwareMatch8.4

ciscoadaptive_security_appliance_softwareMatch8.5

ciscofirewall_services_moduleMatchany

ciscoadaptive_security_appliance_softwareMatch7.2.2.34

ciscoadaptive_security_appliance_softwareMatch7.2.3.1

ciscoadaptive_security_appliance_softwareMatch7.2.2

ciscoadaptive_security_appliance_softwareMatch7.2.4

ciscoadaptive_security_appliance_softwareMatch7.2.3

ciscoadaptive_security_appliance_softwareMatch7.2.1

ciscoadaptive_security_appliance_softwareMatch7.2.4.27

ciscoadaptive_security_appliance_softwareMatch7.2.4.30

ciscoadaptive_security_appliance_softwareMatch7.2.5

ciscoadaptive_security_appliance_softwareMatch7.2.4.33

ciscoadaptive_security_appliance_softwareMatch8.0.2.11

ciscoadaptive_security_appliance_softwareMatch8.0.4

ciscoadaptive_security_appliance_softwareMatch8.0.3

ciscoadaptive_security_appliance_softwareMatch8.0.2

ciscoadaptive_security_appliance_softwareMatch8.0.1.2

ciscoadaptive_security_appliance_softwareMatch8.0.4.25

ciscoadaptive_security_appliance_softwareMatch8.0.4.28

ciscoadaptive_security_appliance_softwareMatch8.0.4.33

ciscoadaptive_security_appliance_softwareMatch8.0.4.32

ciscoadaptive_security_appliance_softwareMatch8.0.5

ciscoadaptive_security_appliance_softwareMatch8.2.0.45

ciscoadaptive_security_appliance_softwareMatch8.2.1

ciscoadaptive_security_appliance_softwareMatch8.2.2

ciscoadaptive_security_appliance_softwareMatch8.2.2.10

ciscoadaptive_security_appliance_softwareMatch8.2.3

ciscoadaptive_security_appliance_softwareMatch8.2.4

ciscoadaptive_security_appliance_softwareMatch8.1.1

ciscoadaptive_security_appliance_softwareMatch8.1.2

ciscoadaptive_security_appliance_softwareMatch8.1.2.15

ciscoadaptive_security_appliance_softwareMatch8.1.2.16

ciscoadaptive_security_appliance_softwareMatch8.1.2.19

ciscoadaptive_security_appliance_softwareMatch8.1.2.23

ciscoadaptive_security_appliance_softwareMatch8.1.2.24

ciscoadaptive_security_appliance_softwareMatch8.3.1.1

ciscoadaptive_security_appliance_softwareMatch8.3.1

ciscoadaptive_security_appliance_softwareMatch8.3.2

ciscoadaptive_security_appliance_softwareMatch8.4.1

ciscoadaptive_security_appliance_softwareMatch8.4.2

ciscoadaptive_security_appliance_softwareMatch8.5.1

CPENameOperatorVersion
cisco firewall services module (fwsm)eqany
cisco adaptive security appliance (asa) softwareeq7.2
cisco adaptive security appliance (asa) softwareeq8.0
cisco adaptive security appliance (asa) softwareeq8.2
cisco adaptive security appliance (asa) softwareeq8.1
cisco adaptive security appliance (asa) softwareeq8.3
cisco adaptive security appliance (asa) softwareeq8.4
cisco adaptive security appliance (asa) softwareeq8.5
cisco firewall services module (fwsm)eqany
cisco adaptive security appliance (asa) softwareeq7.2.2.34

Name	Operator	Version
cisco firewall services module (fwsm)	eq	any
cisco adaptive security appliance (asa) software	eq	7.2
cisco adaptive security appliance (asa) software	eq	8.0
cisco adaptive security appliance (asa) software	eq	8.2
cisco adaptive security appliance (asa) software	eq	8.1
cisco adaptive security appliance (asa) software	eq	8.3
cisco adaptive security appliance (asa) software	eq	8.4
cisco adaptive security appliance (asa) software	eq	8.5
cisco firewall services module (fwsm)	eq	any
cisco adaptive security appliance (asa) software	eq	7.2.2.34