73 matches found
Stack overflow
Stack-based buffer overflow in the DCERPC inspection engine on Cisco Adaptive Security Appliances ASA 5500 series devices, and the ASA Services Module ASASM in Cisco Catalyst 6500 series devices, with software 8.3 before 8.32.34, 8.4 before 8.44.4, 8.5 before 8.51.13, and 8.6 before 8.61.3 and th...
Cisco Patches a Rash of Buffer Overflow and DoS Vulnerabilities
Cisco Systems released fixes for 15 vulnerabilities in three of its major product lines on Wednesday, including two different security appliances. The vulnerabilities would either allow an attacker to remotely execute code on a compromised machine, or execute a denial-of-service attack. Cisco sai...
PT-2012-5532 · Cisco · Cisco Asa Services Module +3
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.3 before 8.32.25 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.4 before 8.42.5 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8...
PT-2012-2517 · Cisco · Cisco Asa Services Module +3
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.0 through 7.2 before 7.25.7 Cisco Adaptive Security Appliances ASA 5500 series devices versions 8.0 before 8.05.27 Cisco Adaptive Security Appliances ASA 5500 series device...
CVE-2011-3297
Cisco Firewall Services Module aka FWSM 3.1 before 3.121, 3.2 before 3.222, 4.0 before 4.016, and 4.1 before 4.17, when certain authentication configurations are used, allows remote attackers to cause a denial of service module crash by making many authentication requests for network access, aka...
Authentication flaw
Cisco Firewall Services Module aka FWSM 3.1 before 3.121, 3.2 before 3.222, 4.0 before 4.016, and 4.1 before 4.17, when certain authentication configurations are used, allows remote attackers to cause a denial of service module crash by making many authentication requests for network access, aka...
Memory corruption
Cisco Firewall Services Module aka FWSM 3.1 before 3.121, 3.2 before 3.222, 4.0 before 4.016, and 4.1 before 4.17, when IPv6 is used, allows remote attackers to cause a denial of service memory corruption and module crash or hang via vectors that trigger syslog message 302015, aka Bug ID CSCti838...
CVE-2011-3297
Cisco Firewall Services Module aka FWSM 3.1 before 3.121, 3.2 before 3.222, 4.0 before 4.016, and 4.1 before 4.17, when certain authentication configurations are used, allows remote attackers to cause a denial of service module crash by making many authentication requests for network access, aka...
PT-2011-4376 · Cisco · Cisco Asa +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.0 through 7.08.12 Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.1 through 7.25.2 Cisco Adaptive Security Appliances ASA 5500 series devices versions...
PT-2011-4381 · Cisco · Cisco Asa +2
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices and the ASA Services module in Cisco Catalyst 6500 series devices versions 7.0 through 7.08.12 Cisco Adaptive Security Appliances ASA 5500 series devices and the ASA Services module i...
PT-2011-4379 · Cisco · Cisco Asa +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.0 through 7.08.12 Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.1 through 7.25.3 Cisco Adaptive Security Appliances ASA 5500 series devices versions...
PT-2011-2316 · Cisco · Cisco Asa +2
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.0 through 7.08.10 Cisco Adaptive Security Appliances ASA 5500 series devices versions 7.1 through 7.25.0 Cisco Adaptive Security Appliances ASA 5500 series devices versions...
CVE-2010-2818
Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module FWSM with software 3.1 before 3.117.2, 3.2 before 3.216.1, 4.0 before 4.010.1, and 4.1 before 4.11.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial...
Design/Logic Flaw
Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module FWSM with software 3.1 before 3.117.2, 3.2 before 3.216.1, 4.0 before 4.010.1, and 4.1 before 4.11.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial...
Design/Logic Flaw
Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module FWSM with software 3.1 before 3.117.2, 3.2 before 3.216.1, 4.0 before 4.010.1, and 4.1 before 4.11.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial...
CVE-2010-2818
Unspecified vulnerability in the SunRPC inspection feature on the Cisco Firewall Services Module FWSM with software 3.1 before 3.117.2, 3.2 before 3.216.1, 4.0 before 4.010.1, and 4.1 before 4.11.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial...
CVE-2010-2820
The CVE-2010-2820 issue is a SunRPC inspection Denial of Service affecting Cisco FWSM on Catalyst 6500 and 7600 platforms. It arises when SunRPC inspection is enabled and crafted SunRPC messages trigger a device reload, leading to a DoS condition. Affected software lines include 3.x and 4.x relea...
CVE-2010-2818
CVE-2010-2818 affects Cisco FWSM SunRPC inspection on Catalyst 6500/7600 platforms. When SunRPC inspection is enabled, crafted SunRPC messages can cause a device reload (DoS). Affects FWSM software in the 3.x/4.x line; fixed releases include 3.1(17.2), 3.2(16.1), 4.0(10.1), and 4.1(1.1). Mitigati...
Cisco Warns of Vulns in Switches, Routers
Cisco is warning of multiple vulnerabilities in its Firewall Services Module FWSM for the Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers. Read the full article. The H Security...
Cisco Releases Security Advisory for Firewall Services Module
Cisco has released a security advisory to address multiple vulnerabilities in the Cisco Firewall Services Module. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition. US-CERT encourages users and administrators to review Cisco security advisory...