Vulnerabilities > CVE-2007-5584 - Denial Of Service vulnerability in Cisco Firewall Services Module 3.2(3)

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
cisco

Summary

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.2(3) allows remote attackers to cause a denial of service (device reload) via crafted "data in the control-plane path with Layer 7 Application Inspections."

Vulnerable Configurations

Part Description Count
Hardware
Cisco
3

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 26941 CVE ID:CVE-2007-5584 CNCVE ID:CNCVE-20075584 Cisco Firewall Services Module (FWSM)是一款思科公司提供的防火墙服务模块,集成在Cisco Catalyst 6500交换机和Cisco 7600系列路由器上。 Cisco Firewall Services Module (FWSM)包含的第7层应用程序检测处理上存在问题,远程攻击者可以利用漏洞使FWSM模块重载,造成拒绝服务攻击。 问题是第7层应用程序检测模块处理控制面路径中的数据存在问题,发送标准的网络通信,并传递给应用层协议检测处理,可导致FWSM模块重载。 Cisco Firewall Services Module 3.2(3) 可参考如下安全公告获得补丁信息: <a href=http://www.cisco.com/warp/public/707/cisco-sa-20071219-fwsm.shtml target=_blank>http://www.cisco.com/warp/public/707/cisco-sa-20071219-fwsm.shtml</a>
idSSV:2654
last seen2017-11-19
modified2007-12-21
published2007-12-21
reporterRoot
titleCisco防火墙服务模块中应用程序检测拒绝服务漏洞