Firewall Services Module@3.1 Security Vulnerabilities and Issues — Firewall Services Module@3.1 CVE List

Lucene search

CiscoFirewall Services Module3.1

9 matches found

CVE•added 2007/02/16 12:28 a.m.•51 views

CVE-2007-0962

Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.

7.8CVSS6.6AI score0.02825EPSS

CVE•added 2007/02/16 12:28 a.m.•47 views

CVE-2007-0964

Cisco FWSM 3.x before 3.1(3.18), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a malformed HTTPS request.

5.4CVSS6.9AI score0.00617EPSS

CVE•added 2007/02/16 12:28 a.m.•47 views

CVE-2007-0966

Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.11), when the HTTPS server is enabled, allows remote attackers to cause a denial of service (device reboot) via certain HTTPS traffic.

7.8CVSS6.6AI score0.01482EPSS

CVE•added 2007/02/16 12:28 a.m.•44 views

CVE-2007-0968

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.

9CVSS6.2AI score0.01EPSS

CVE•added 2007/02/16 12:28 a.m.•43 views

CVE-2007-0967

Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.1) allows remote attackers to cause a denial of service (device reboot) via malformed SNMP requests.

7.8CVSS6.6AI score0.0063EPSS

CVE•added 2006/05/09 10:2 a.m.•42 views

CVE-2006-0515

Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to bypass HTTP access restrictions by splitting the GET method of an HTTP request into multiple packets, ...

7.5CVSS6.9AI score0.04363EPSS

CVE•added 2007/02/16 12:28 a.m.•42 views

CVE-2007-0963

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.3), when set to log at the "debug" level, allows remote attackers to cause a denial of service (device reboot) by sending packets that are not of a particular protocol such as TCP or UDP, which triggers the reboot d...

7.8CVSS6.7AI score0.00573EPSS

CVE•added 2007/02/16 12:28 a.m.•41 views

CVE-2007-0965

Cisco FWSM 3.x before 3.1(3.2), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a long HTTP request.

7.8CVSS6.9AI score0.01134EPSS

CVE•added 2009/08/21 11:2 a.m.•37 views

CVE-2009-0638

The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages.

7.8CVSS6.7AI score0.01334EPSS