Executive Summary

Title Multiple Vulnerabilities in Cisco Firewall Services Module
Name cisco-sa-20111005-fwsm First vendor Publication 2011-08-26
Vendor Cisco Last vendor Modification 2011-10-05
Severity (Vendor) N/A Revision 1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 7.9 Attack Range Adjacent network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 5.5 Authentication None Required
Calculate full CVSS 2.0 Vectors scores


The Cisco Firewall Services Module (FWSM) for the Cisco Catalyst 6500 Series switches and Cisco 7600 Series routers is affected by the following vulnerabilities:

* Syslog Message Memory Corruption Denial of Service Vulnerability
* Authentication Proxy Denial of Service Vulnerability
* TACACS+ Authentication Bypass Vulnerability
* Sun Remote Procedure Call (SunRPC) Inspection Denial of Service Vulnerabilities
* Internet Locator Server (ILS) Inspection Denial of Service Vulnerability

These vulnerabilities are not interdependent; a release that is affected by one vulnerability is not necessarily affected by the others.

Cisco has released free software updates that address these vulnerabilities. Workarounds are available for some of the vulnerabilities disclosed in this advisory.

Original Source

Url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b9 (...)

CWE : Common Weakness Enumeration

% Id Name
75 % CWE-399 Resource Management Errors
25 % CWE-287 Improper Authentication

CPE : Common Platform Enumeration

Application 73
Application 64
Hardware 1
Hardware 1
Hardware 1
Hardware 1

Open Source Vulnerability Database (OSVDB)

Id Description
76090 Cisco Multiple Product ILS Message Packet Parsing Remote DoS

76089 Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3302)

76088 Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3301)

76087 Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3300)

76086 Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3299)

76085 Cisco Multiple Product TACACS+ Reply Parsing Authentication Bypass

76084 Cisco Firewall Services Module (FWSM) Authentication Request Saturation Remot...

76083 Cisco Firewall Services Module (FWSM) IPv6 Syslog Message 302015 Log Generati...

Nessus® Vulnerability Scanner

Date Description
2011-10-25 Name : The remote security device is missing a vendor-supplied security patch.
File : cisco-sa-20111005-asa.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
Date Informations
2013-05-11 00:42:43
  • Multiple Updates