Executive Summary
Summary | |
---|---|
Title | Multiple Vulnerabilities in Cisco Firewall Services Module |
Informations | |||
---|---|---|---|
Name | cisco-sa-20111005-fwsm | First vendor Publication | 2011-08-26 |
Vendor | Cisco | Last vendor Modification | 2011-10-05 |
Severity (Vendor) | N/A | Revision | 1.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:A/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.9 | Attack Range | Adjacent network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 5.5 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
The Cisco Firewall Services Module (FWSM) for the Cisco Catalyst 6500 Series switches and Cisco 7600 Series routers is affected by the following vulnerabilities: * Syslog Message Memory Corruption Denial of Service Vulnerability These vulnerabilities are not interdependent; a release that is affected by one vulnerability is not necessarily affected by the others. Cisco has released free software updates that address these vulnerabilities. Workarounds are available for some of the vulnerabilities disclosed in this advisory. |
Original Source
Url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9 (...) |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
75 % | CWE-399 | Resource Management Errors |
25 % | CWE-287 | Improper Authentication |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
76090 | Cisco Multiple Product ILS Message Packet Parsing Remote DoS |
76089 | Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3302) |
76088 | Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3301) |
76087 | Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3300) |
76086 | Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3299) |
76085 | Cisco Multiple Product TACACS+ Reply Parsing Authentication Bypass |
76084 | Cisco Firewall Services Module (FWSM) Authentication Request Saturation Remot... |
76083 | Cisco Firewall Services Module (FWSM) IPv6 Syslog Message 302015 Log Generati... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2011-10-25 | Name : The remote security device is missing a vendor-supplied security patch. File : cisco-sa-20111005-asa.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2013-05-11 00:42:43 |
|