Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Multiple Vulnerabilities in Firewall Services Module

cisco-sa-20071017-fwsm · High · Published · Updated

Two crafted packet vulnerabilities exist in the Cisco Firewall Services Module (FWSM) that may result in a reload of the FWSM. These vulnerabilities can be triggered during the processing of HTTPS requests, or during the processing of Media Gateway Control Protocol (MGCP) packets. A third vulnerability may cause access control list (ACL) entries to not be evaluated after the access list has been manipulated. Note: These vulnerabilities are independent of each other; a device may be affected by one and not by the others. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20071017-fwsm.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2007-5568, CVE-2007-5570, CVE-2007-5571
Cisco Bug IDsNA
CVSS ScoreBase 7.1
Base 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Base 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Product Names From Source
Cisco Firewall Services Module (FWSM), Cisco PIX/ASA

Related Products

Product CVE Evidence
Cisco PIX/ASA CVE-2007-5571 Cisco OpenVuln
Cisco PIX/ASA CVE-2007-5570 Cisco OpenVuln
Cisco PIX/ASA CVE-2007-5568 Cisco OpenVuln
Cisco Firewall Services Module (FWSM) CVE-2007-5571 Cisco OpenVuln
Cisco Firewall Services Module (FWSM) CVE-2007-5570 Cisco OpenVuln
Cisco Firewall Services Module (FWSM) CVE-2007-5568 Cisco OpenVuln