Design/Logic Flaw

2007-10-1821:17:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.2%

JSON

Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536.

CPENameOperatorVersion
firewall_services_modulege3.1
firewall_services_modulele3.1
firewall_services_modulege3.2
firewall_services_modulele3.2

Name	Operator	Version
firewall_services_module	ge	3.1
firewall_services_module	le	3.1
firewall_services_module	ge	3.2
firewall_services_module	le	3.2

References

secunia.com/advisories/27236

www.cisco.com/en/US/products/products_security_advisory09186a00808dda61.shtml

www.securityfocus.com/bid/26109

www.securitytracker.com/id?1018825

www.vupen.com/english/advisories/2007/3530

exchange.xforce.ibmcloud.com/vulnerabilities/37258