19 matches found
CVE-2011-0394
The CVE-2011-0394 issue affects Cisco ASA 5500 series (software 7.0 before 7.0(8.11); 7.1/7.2 before 7.2(5.1); 8.0 before 8.0(5.19); 8.1 before 8.1(2.47); 8.2 before 8.2(2.19); 8.3 before 8.3(1.8)); Cisco PIX 500 series; and Cisco FWSM 3.1/3.2/4.0/4.1. It allows remote attackers to cause a device...
CVE-2011-3296
Cisco FWSM (Firewall Services Module) is affected by CVE-2011-3296 in versions 3.1 before 3.1(21), 3.2 before 3.2(22), 4.0 before 4.0(16), and 4.1 before 4.1(7) when IPv6 is in use. The issue is a memory corruption that can be triggered to cause a denial of service (module crash/hang) via crafted...
CVE-2010-2820
The CVE-2010-2820 issue is a SunRPC inspection Denial of Service affecting Cisco FWSM on Catalyst 6500 and 7600 platforms. It arises when SunRPC inspection is enabled and crafted SunRPC messages trigger a device reload, leading to a DoS condition. Affected software lines include 3.x and 4.x relea...
CVE-2011-3299
CVE-2011-3299 corresponds to four SunRPC Inspection Denial of Service vulnerabilities (CVE-2011-3299, -3300, -3301, -3302) affecting Cisco ASA 5500 Series and ASA Services Module, and the Cisco FWSM. Affected by crafted SunRPC traffic that can cause device reloads; impacts include DoS. The Cisco ...
CVE-2012-0356
CVE-2012-0356 affects Cisco ASA 5500 series and ASASM, plus the FWSM on Catalyst 6500, when multicast routing is enabled. The vulnerability arises from improper handling of PIM messages, potentially allowing a remote attacker to trigger a device reload. Affected software ranges include ASA/ASASM ...
CVE-2010-2818
CVE-2010-2818 affects Cisco FWSM SunRPC inspection on Catalyst 6500/7600 platforms. When SunRPC inspection is enabled, crafted SunRPC messages can cause a device reload (DoS). Affects FWSM software in the 3.x/4.x line; fixed releases include 3.1(17.2), 3.2(16.1), 4.0(10.1), and 4.1(1.1). Mitigati...
CVE-2010-2821
Cisco FWSM vulnerabilities (CVE-2010-2821, related SunRPC/TCP DoS) may cause device reloads when multi-mode is enabled and TCP-based traffic (Telnet/SSH/ASDM) is processed. Affected: Cisco FWSM on Catalyst 6500 and 7600 platforms with software 3.x up to 3.2(17.2), 4.x up to 4.0(11.1), and 4.1 up ...
CVE-2011-3297
CVE-2011-3297 concerns Cisco’s Firewall Services Module (FWSM) used in Catalyst 6500/7600 platforms. The vulnerability arises when certain authentication configurations are used, allowing remote attackers to cause a denial of service (module crash) by issuing many network access authentication re...
CVE-2013-1149
CVE-2013-1149 affects Cisco ASA and FWSM: remote attackers can cause a denial of service (device reload) by sending a crafted IKEv1 message. Affected software ranges include ASA 7.x up to 7.2(5.10), 8.0 up to 8.0(5.28), 8.1/8.2 up to 8.2(5.35), 8.3 up to 8.3(2.34), 8.4 up to 8.4(4.11), 8.6 up to ...
CVE-2011-3298
CVE-2011-3298 is a TACACS+ authentication bypass affecting Cisco ASA 5500 Series and Cisco FWSM. Cisco PSIRT advisories (cisco-sa-20111005-asa and cisco-sa-20111005-fwsm) document the vulnerability and note that a crafted TACACS+ reply can bypass authentication. The advisory sections also list re...
CVE-2011-3303
CVE-2011-3303 affects Cisco ASA 5500 Series and ASA Services Module (Catalyst 6500) and the FWSM, enabling an unauthenticated remote attacker to trigger a denial-of-service by sending malformed ILS traffic, causing the device to reload. The issue is tied to ILS inspection and is documented across...
CVE-2011-3301
CVE-2011-3301 covers SunRPC Inspection DoS in Cisco ASA 5500 Series and Cisco Catalyst 6500 Series ASA Services Module, plus FWSM; crafted SunRPC traffic can cause a remote device reload. The advisory lists affected software trains and the earliest fixed releases (e.g., ASA FWSM: 3.1→21, 3.2→22, ...
CVE-2013-5508
CVE-2013-5508 affects Cisco ASA/ FWSM SQLNet Inspection Engine. The vulnerability allows remote attackers to cause a DoS (device reload) by sending crafted segmented TNS packets. Impacted versions include ASA software 7.x–9.1.x (with specific 7.2(5.12), 8.2(5.44), 8.3(2.39), 8.4(6), 8.5(1.18), 8....
CVE-2010-2819
The CVE-2010-2819 entry concerns the SunRPC inspection vulnerability in Cisco FWSM (Firewall Services Module) for Catalyst 6500 Series switches and 7600 Series routers. Affected software versions include 3.x and 4.x before specific fixed releases (3.1(17.2), 3.2(16.1), 4.0(10.1), 4.1(1.1)); explo...
CVE-2011-3300
Cisco CVE-2011-3300 covers SunRPC inspection DoS vulnerabilities in Cisco ASA 5500 Series and the ASA Services Module (FWSM) for Catalyst 6500/7600. Affected product scope includes ASA software trains 7.0, 7.1, 7.2, 8.0–8.5 (specific fixed releases per train) and the FWSM software 3.1–4.x. The vu...
CVE-2011-3302
CVE-2011-3302 affects Cisco ASA 5500 series (and FWSM on Catalyst 6500) with specific ASA/FWSM software trains: 7.0 up to before 7.0(8.13), 7.1/7.2 before 7.2(5.4), 8.0 before 8.0(5.25), 8.1/8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2.6), and 8.5 before 8.5(1.1); FWSM 3.1 before ...
CVE-2013-1155
The CVE-2013-1155 vulnerability affects Cisco Firewall Services Module (FWSM) software for Cisco Catalyst 6500 and Cisco 7600 series. The auth-proxy functionality in FWSM versions 3.1 and 3.2 prior to 3.2(20.1), 4.0 prior to 4.0(15.2), and 4.1 prior to 4.1(5.1) allows remote attackers to cause a ...
CVE-2013-5506
The CVE-2013-5506 issue affects Cisco Firewall Services Module (FWSM) software in multiple-context mode. A flaw in the authorization code allows an authenticated, local attacker to read or modify any context’s configuration by executing certain commands. Affected releases include FWSM 3.1.x and 3...
CVE-2014-0710
CVE-2014-0710 affects Cisco Firewall Services Module (FWSM) software and is due to a race condition in the cut-through proxy’s memory release. A remote attacker can cause a denial-of-service (device reload) by sending traffic that matches the cut-through proxy condition. Affected versions are FWS...