Thursday, May 12, 2005

Cisco Firewall Services Module TCP ACL Bypass Vulnerability

Via FrSIRT.

FrSIRT Advisory : FrSIRT/ADV-2005-0527
CVE Reference : GENERIC-MAP-NOMATCH
Rated as : Low Risk
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-05-11

* Technical Description

A new vulnerability was identified in Cisco products, which may be exploited by attackers to bypass the security restrictions. The flaw resides in the Cisco Firewall Services Module (FWSM) when configured for exceptions in content filtering, which may be exploited by attackers to bypass access-list entries intended to explicitly filter inbound TCP packets.

* Affected Products *

Catalyst 6500 series switches
Cisco 7600 series routers

posted by Fergie @ 5/12/2005 11:36:00 AM

0 Comments:

Post a Comment

<< Home