Cisco-SA-20131009-CVE-2013-5506

Cisco Firewall Services Module Command Authorization Vulnerability

Cisco-SA-20131009-CVE-2013-5506 · Medium · Published 12 years ago · Updated 12 years ago

A vulnerability in the authorization code of the Cisco Firewall Services Module (FWSM) could allow an authenticated but unprivileged, local attacker to delete, modify, or view the configuration of any other context of the affected system. The vulnerability is due to insufficient authorization safeguards of certain administrative commands in a user context when the affected system is configured for multiple context mode. An attacker could exploit this vulnerability by executing certain commands in any of the user contexts of the affected system. Cisco has confirmed the vulnerability in a security advisory and released software updates. Only an attacker who could log in locally to the affected device could exploit the vulnerability, decreasing the potential source of attacks.

Cisco advisory · CSAF JSON

Workarounds

Administrators are advised to apply the appropriate updates.

Administrators are advised to allow only trusted users to access local systems.

Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access the affected systems.

Administrators are advised to monitor affected systems.

CVEs	CVE-2013-5506
Cisco Bug IDs	CSCue46080
CVSS Score	Base 6.8 Base 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C/E:F/RL:OF/RC:C
Product Names From Source	Cisco Firewall Services Module (FWSM)

Related Products

Product	CVE	Evidence
Cisco Firewall Services Module (FWSM)	CVE-2013-5506	Cisco OpenVuln

Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco Firewall Services Module Command Authorization Vulnerability

Workarounds

Related Products