OSVDB ID: 33058

Title: Cisco Firewall Services Module (FWSM) aaa Authentication HTTP Request Overflow DoS

Info

Disclosure

Feb 14, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Feb 14, 2007

Description

Cisco Firewall Services Module (FWSM) contains a flaw that may allow a remote denial of service. The issue is triggered when HTTP requests with a long URL are send through the auth-proxy feature, and will result in loss of availability for the system.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Integrity, Loss of Availability
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: Vendor Verified
OSVDB: Security Software

Solution

Upgrade to FWSM version 3.1(2) or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Cisco Systems, Inc.	Firewall Services Module (FWSM)	3.1(1.6)
		3.1(1)
		3.1
		3.1(2)
		3.1(1.9)

References

CVE ID: 2007-0965 (see also: NVD)
Bugtraq ID: 22561
Secunia Advisory ID: 24172
Related OSVDB ID: 33054 33055 33056 33057 33059 33060 33061
VUPEN Advisory: ADV-2007-0609
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-02/0242.html
Vendor Specific Solution URL: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsd91268
Vendor Specific Advisory URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/33058

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

Firewall Services Module (FWSM)

References

Credit