7600 Series

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

cisco

NVD

Published: 2005-05-11

Updated: 2011-03-08

Summary

Unknown vulnerability in Cisco Firewall Services Module (FWSM) 2.3.1 and earlier, when using URL, FTP, or HTTPS filtering exceptions, allows certain TCP packets to bypass access control lists (ACLs).

Vulnerable Configurations

Part	Description	Count
Hardware	Cisco Cisco Firewall Services Module - Cisco Firewall Services Module 1.1.2 Cisco Firewall Services Module 1.1.3 Cisco Firewall Services Module 1.1_\(3.005\) Cisco Firewall Services Module 2.1_\(0.208\) Cisco Firewall Services Module 2.3 Cisco Firewall Services Module 2.3\(1\)	7

References

http://www.cisco.com/warp/public/707/cisco-sa-20050511-url.shtml
http://www.vupen.com/english/advisories/2005/0527