27 matches found
CVE-2011-3296
Cisco FWSM (Firewall Services Module) is affected by CVE-2011-3296 in versions 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7) when IPv6 is in use. The issue is a memory corruption that can be triggered to cause a denial of service (module crash/hang) via crafted...
CVE-2012-4661
CVE-2012-4661 : A stack-based buffer overflow in Cisco’s DCERPC inspection engine affects ASA 5500 series (and ASASM in Catalyst 6500) and FWSM, allowing an unauthenticated remote attacker to execute arbitrary code via a crafted DCERPC packet. Affected versions include ASA 8.3 before 8.3(2.34), 8...
CVE-2012-0353
CVE-2012-0353 affects Cisco ASA 5500 series (and ASA Services Module in Catalyst 6500) with ASA software versions 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.5), 8.3 before 8.3(2.22), 8.4 before 8.4(2.1), and 8.5 before 8.5(1.2). The UDP inspection engine fails to handle flows pr...
CVE-2011-3299
CVE-2011-3299 corresponds to four SunRPC Inspection Denial of Service vulnerabilities (CVE-2011-3299, -3300, -3301, -3302) affecting Cisco ASA 5500 Series and ASA Services Module, and the Cisco FWSM. Affected by crafted SunRPC traffic that can cause device reloads; impacts include DoS. The Cisco ...
CVE-2012-4662
The CVE-2012-4662 issue affects Cisco ASA 5500 series (and ASA ASASM on Catalyst 6500) and FWSM 4.1 on 6500/7600 platforms. The root cause is a flaw in the DCERPC inspection engine that allows remote, unauthenticated adversaries to trigger a denial of service resulting in a device reload via a cr...
CVE-2005-4258
CVE-2005-4258 affects Cisco Catalyst Switches. A remote attacker can cause a device crash (DoS) by sending an IP packet where source and destination IPs/ports are identical and the SYN bit is set (LanD). The issue’s provenance is unknown and details originate from BIN/NVD entries. The NVD metrics...
CVE-2012-0354
CVE-2012-0354 affects Cisco ASA 5500 Series and ASA Services Module (ASASM) on Catalyst 6500. The Threat Detection feature, when configured with Scanning Threat and shun enabled, can be triggered by IPv4/IPv6 traffic to cause a device reload (DoS). Affected software versions and fixes per Cisco a...
CVE-2012-0356
CVE-2012-0356 affects Cisco ASA 5500 series and ASASM, plus the FWSM on Catalyst 6500, when multicast routing is enabled. The vulnerability arises from improper handling of PIM messages, potentially allowing a remote attacker to trigger a device reload. Affected software ranges include ASA/ASASM ...
CVE-2012-3058
CVE-2012-3058 affects Cisco ASA 5500 series and ASA Services Module (ASASM) in Cisco Catalyst 6500 switches. Vulnerable software versions are ASA 8.4 prior to 8.4(4.1), 8.5 prior to 8.5(1.11), and 8.6 prior to 8.6(1.3). The issue allows remote attackers to cause a denial of service (device reload...
CVE-2012-4643
CVE-2012-4643 affects Cisco ASA 5500 Series and ASA Services Module (ASASM) in Catalyst 6500; the DHCP server does not properly allocate memory for DHCP packets, leading to a denial-of-service via crafted IPv4 packets and a device reload (Bug CSCtw84068). Affected software versions are 7.0–7.2(5....
CVE-2011-3297
CVE-2011-3297 concerns Cisco’s Firewall Services Module (FWSM) used in Catalyst 6500/7600 platforms. The vulnerability arises when certain authentication configurations are used, allowing remote attackers to cause a denial of service (module crash) by issuing many network access authentication re...
CVE-2007-5134
Cisco Catalyst 6500 and Cisco 7600 Series devices are affected by CVE-2007-5134 due to handling of 127.0.0.0/8 EOBC (loopback) addresses, which could allow an unauthenticated, remote attacker to bypass ACLs and send packets to management interfaces such as the Supervisor or MSFC. The vulnerabilit...
CVE-2007-1258
CVE-2007-1258 describes an unspecified vulnerability in Cisco IOS 12.2SXA/SXB/SXD/SXF and in MSFC2/MSFC2a/MSFC3 in Hybrid Mode on Cisco Catalyst 6000/6500 and Cisco 7600 series. The issue allows remote attackers on the local network segment to trigger a denial of service (software reload) by send...
CVE-2011-3298
CVE-2011-3298 is a TACACS+ authentication bypass affecting Cisco ASA 5500 Series and Cisco FWSM. Cisco PSIRT advisories (cisco-sa-20111005-asa and cisco-sa-20111005-fwsm) document the vulnerability and note that a crafted TACACS+ reply can bypass authentication. The advisory sections also list re...
CVE-2011-3303
CVE-2011-3303 affects Cisco ASA 5500 Series and ASA Services Module (Catalyst 6500) and the FWSM, enabling an unauthenticated remote attacker to trigger a denial-of-service by sending malformed ILS traffic, causing the device to reload. The issue is tied to ILS inspection and is documented across...
CVE-2003-1001
CVE-2003-1001 describes a buffer overflow in the Cisco Firewall Services Module (FWSM) used on Cisco Catalyst 6500 and 7600 series devices. The flaw allows remote attackers to trigger a denial of service (crash and reload) through HTTP authentication requests for TACACS+ or RADIUS. Multiple sourc...
CVE-2011-3301
CVE-2011-3301 covers SunRPC Inspection DoS in Cisco ASA 5500 Series and Cisco Catalyst 6500 Series ASA Services Module, plus FWSM; crafted SunRPC traffic can cause a remote device reload. The advisory lists affected software trains and the earliest fixed releases (e.g., ASA FWSM: 3.1→21, 3.2→22, ...
CVE-2011-3304
CVE-2011-3304 affects Cisco ASA 5500 Series appliances and the ASA Services Module in Cisco Catalyst 6500 Series devices. The issue is a Denial of Service: unauthenticated remote attackers can trigger a device reload by sending crafted MSN Instant Messenger traffic to MSN IM inspection. Affects s...
CVE-2012-4663
CVE-2012-4663 covers a DCERPC inspection engine vulnerability in Cisco ASA 5500 series devices and the ASASM/ FWSM modules. The issue allows remote, unauthenticated attackers to trigger a denial of service (device reload) by sending a crafted DCERPC packet. Affected products and versions include:...
CVE-2011-3300
Cisco CVE-2011-3300 covers SunRPC inspection DoS vulnerabilities in Cisco ASA 5500 Series and the ASA Services Module (FWSM) for Catalyst 6500/7600. Affected product scope includes ASA software trains 7.0, 7.1, 7.2, 8.0–8.5 (specific fixed releases per train) and the FWSM software 3.1–4.x. The vu...
CVE-2011-3302
CVE-2011-3302 affects Cisco ASA 5500 series (and FWSM on Catalyst 6500) with specific ASA/FWSM software trains: 7.0 up to before 7.0(8.13), 7.1/7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1/8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1); FWSM 3.1 before ...
CVE-2003-1002
CVE-2003-1002 affects Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices. A remote attacker can trigger a denial of service by sending an SNMPv3 message when snmp-server is configured, causing a crash and reload. Exploitation details are not provided in the conne...
CVE-2012-4659
The CVE-2012-4659 issue affects Cisco ASA 5500 series and ASASM on Catalyst 6500, where the AAA IPv4 SSL VPN authentication path can be abused by remote attackers to trigger a device reload (DoS) via a crafted authentication response. Affected software versions are 8.2 before 8.2(5.30) and 8.3 be...
CVE-2012-4660
The issue CVE-2012-4660 affects Cisco ASA 5500 series (and ASASM in Catalyst 6500) SIP inspection engine. Versions 8.2 before 8.2(5.17), 8.3 before 8.3(2.28), 8.4 before 8.4(2.13), 8.5 before 8.5(1.4), and 8.6 before 8.6(1.5) are vulnerable to remote, unauthenticated denial of service (device rel...
CVE-2014-2124
CVE-2014-2124 affects Cisco IOS 15.1(2)SY3 and earlier on Catalyst 6500 with Supervisor Engine 2T (Sup2T). The root cause is incorrect processing of multicast traffic by the Sup2T, allowing remote attackers to cause a denial of service (device crash). Cisco’s advisory confirms the vulnerability a...
CVE-2012-0355
CVE-2012-0355 affects Cisco ASA/ASASM: software versions 8.4 before 8.4(2.11) and 8.5 before 8.5(1.4) may allow a remote attacker to trigger a denial of service (device reload) by IPv4 or IPv6 packets that generate syslog message 305006. Root cause is the handling of syslog-triggered events leadi...
CVE-2012-5037
CVE-2012-5037 affects Cisco IOS before 15.1(1)SY on Catalyst 6500/7600. The vulnerability arises in the ACL implementation, where a local attacker can trigger a denial of service (device reload) by executing a sequence: a no object-group command followed by an object-group command (Bug ID CSCts16...