Lucene search
+L
CiscoFirewall Services Module*

13 matches found

CVE
CVE
added 2004/03/18 5:0 a.m.135 views

CVE-2004-0079

The connected documents confirm CVE-2004-0079: in OpenSSL 0.9.6c–0.9.6k and 0.9.7a–0.9.7c, a crafted SSL/TLS handshake can trigger a null dereference in do_change_cipher_spec, causing a denial of service (crash). Remediation is to apply patched/OpenSSL releases per advisories (e.g., CentOS adviso...

7.5CVSS7.1AI score0.09537EPSS
CVE
CVE
added 2004/03/18 5:0 a.m.121 views

CVE-2004-0081

CVE-2004-0081 affects OpenSSL 0.9.6 prior to 0.9.6d. The issue is that OpenSSL does not properly handle unknown TLS/SSL message types, enabling a remote attacker to trigger a denial of service via an infinite loop (demonstrated with the Codenomicon TLS Test Tool). Impact is a network-based DoS; e...

5CVSS7.2AI score0.07229EPSS
CVE
CVE
added 2004/03/18 5:0 a.m.111 views

CVE-2004-0112

The CVE-2004-0112 issue affects OpenSSL 0.9.7a/b/c: during the SSL/TLS handshake, the Kerberos ciphersuite path fails to validate the Kerberos ticket length, enabling a remote attacker to cause a denial-of-service by triggering an out-of-bounds read. Public sources in connected documents confirm ...

5CVSS7.2AI score0.10424EPSS
CVE
CVE
added 2011/02/25 11:0 a.m.68 views

CVE-2011-0394

The CVE-2011-0394 issue affects Cisco ASA 5500 series (software 7.0 before 7.0(8.11); 7.1/7.2 before 7.2(5.1); 8.0 before 8.0(5.19); 8.1 before 8.1(2.47); 8.2 before 8.2(2.19); 8.3 before 8.3(1.8)); Cisco PIX 500 series; and Cisco FWSM 3.1/3.2/4.0/4.1. It allows remote attackers to cause a device...

7.8CVSS6.7AI score0.03442EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.65 views

CVE-2010-2820

The CVE-2010-2820 issue is a SunRPC inspection Denial of Service affecting Cisco FWSM on Catalyst 6500 and 7600 platforms. It arises when SunRPC inspection is enabled and crafted SunRPC messages trigger a device reload, leading to a DoS condition. Affected software lines include 3.x and 4.x relea...

7.8CVSS6.8AI score0.0121EPSS
CVE
CVE
added 2013/04/24 10:0 a.m.65 views

CVE-2013-1195

CVE-2013-1195 affects Cisco ASA and Cisco FWSM time-based ACL handling. The time-range object does not properly process periodic statements, allowing remote attackers to bypass access lists by sending traffic during denied time periods. Root cause: improper implementation of the time-range period...

5CVSS7AI score0.01247EPSS
CVE
CVE
added 2012/03/15 12:0 a.m.62 views

CVE-2012-0356

CVE-2012-0356 affects Cisco ASA 5500 series and ASASM, plus the FWSM on Catalyst 6500, when multicast routing is enabled. The vulnerability arises from improper handling of PIM messages, potentially allowing a remote attacker to trigger a device reload. Affected software ranges include ASA/ASASM ...

7.8CVSS6.5AI score0.02076EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.60 views

CVE-2010-2818

CVE-2010-2818 affects Cisco FWSM SunRPC inspection on Catalyst 6500/7600 platforms. When SunRPC inspection is enabled, crafted SunRPC messages can cause a device reload (DoS). Affects FWSM software in the 3.x/4.x line; fixed releases include 3.1(17.2), 3.2(16.1), 4.0(10.1), and 4.1(1.1). Mitigati...

7.8CVSS6.8AI score0.0121EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.59 views

CVE-2010-2821

Cisco FWSM vulnerabilities (CVE-2010-2821, related SunRPC/TCP DoS) may cause device reloads when multi-mode is enabled and TCP-based traffic (Telnet/SSH/ASDM) is processed. Affected: Cisco FWSM on Catalyst 6500 and 7600 platforms with software 3.x up to 3.2(17.2), 4.x up to 4.0(11.1), and 4.1 up ...

7.1CVSS6.9AI score0.01064EPSS
CVE
CVE
added 2005/11/18 9:0 p.m.58 views

CVE-2005-3669

CVE-2005-3669 covers multiple unspecified vulnerabilities in the Internet Key Exchange v1 (IKEv1) implementation in Cisco products that cause a denial of service (device reset) via malformed IKE packets, demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. The Cisco advisory lacks details to m...

5CVSS6.9AI score0.05143EPSS
CVE
CVE
added 2003/12/17 5:0 a.m.57 views

CVE-2003-1001

CVE-2003-1001 describes a buffer overflow in the Cisco Firewall Services Module (FWSM) used on Cisco Catalyst 6500 and 7600 series devices. The flaw allows remote attackers to trigger a denial of service (crash and reload) through HTTP authentication requests for TACACS+ or RADIUS. Multiple sourc...

5CVSS7.1AI score0.01378EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.55 views

CVE-2010-2819

The CVE-2010-2819 entry concerns the SunRPC inspection vulnerability in Cisco FWSM (Firewall Services Module) for Catalyst 6500 Series switches and 7600 Series routers. Affected software versions include 3.x and 4.x before specific fixed releases (3.1(17.2), 3.2(16.1), 4.0(10.1), 4.1(1.1)); explo...

7.8CVSS6.8AI score0.0121EPSS
CVE
CVE
added 2003/12/17 5:0 a.m.54 views

CVE-2003-1002

CVE-2003-1002 affects Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices. A remote attacker can trigger a denial of service by sending an SNMPv3 message when snmp-server is configured, causing a crash and reload. Exploitation details are not provided in the conne...

5CVSS6.8AI score0.01273EPSS