OSVDB ID: 33056

Title: Cisco Firewall Services Module (FWSM) Crafted Traffic Syslog Message 710006 DoS

Info

Disclosure

Feb 14, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Feb 14, 2007

Description

Cisco Firewall Services Module (FWSM) contains a flaw that may allow a remote denial of service. The issue is triggered when the FWSM receives an unknown malformed packet for one of it's interfaces IP and generates a syslog message with id 710006. This will result in loss of availability for the system.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Workaround, Upgrade
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Security Software

Solution

Upgrade to FWSM version 3.1(3.3) or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Disable logging of 710006 messages via the global command 'no logging message 710006'

Products

Cisco Systems, Inc.	Firewall Services Module (FWSM)	3.1(1)
		3.1(3)
		3.1(2)
		3.1(3.3)

References

CVE ID: 2007-0963 (see also: NVD)
Bugtraq ID: 22561
Secunia Advisory ID: 24172
Related OSVDB ID: 33054 33055 33057 33058 33059 33060 33061
VUPEN Advisory: ADV-2007-0609
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-02/0242.html
Vendor Specific Solution URL: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCse85707
Generic Informational URL: http://www.cisco.com/en/US/docs/security/fwsm/fwsm31/system/message/logmsgs.html#wp1285757
Vendor Specific Advisory URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/33056

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

Firewall Services Module (FWSM)

References

Credit