Cisco security products vulnerable to DoS
Cisco is warning of multiple vulnerabilities in its Firewall Services Module (FWSM) for the Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers. The company says that, after processing crafted SunRPC or certain TCP packets, the vulnerabilities could cause the FWSM to restart. If an attacker repeatedly exploits the issue, it could result in a sustained Denial-of-Service (DoS) condition. Version 3.1, 3.2, 4.0 and 4.1 of the FWSM are reportedly affected. Updates have been released and workarounds are also available.
Additionally, the company is alerting its customers to other vulnerabilities in its ASA 5500 Series Adaptive Security Appliances, which are also vulnerable to several DoS exploits. The vulnerabilities are not reportedly interdependent, meaning that a release affected by one issue is not necessarily affected by the others. Cisco says that versions 7.2.x, 8.0.x, 8.1.x, and 8.2.x are affected and updates have already been released. Workarounds are also provided.
See also:
- Multiple Vulnerabilities in Cisco Firewall Services Module, security advisory from Cisco.
- Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances, security advisory from Cisco.
(crve)