Vulnerabilities > Cisco > Firewall Services Module > 3.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-08-21 | CVE-2009-0638 | Remote Denial of Service vulnerability in Cisco Firewall Services Module ICMP Packet The Cisco Firewall Services Module (FWSM) 2.x, 3.1 before 3.1(16), 3.2 before 3.2(13), and 4.0 before 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote attackers to cause a denial of service (traffic-handling outage) via a series of malformed ICMP messages. | 7.8 |
| 2007-10-18 | CVE-2007-5571 | Permissions, Privileges, and Access Controls vulnerability in Cisco Firewall Services Module Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536. | 6.8 |
| 2007-10-18 | CVE-2007-5570 | Improper Input Validation vulnerability in Cisco Firewall Services Module Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844. | 7.8 |
| 2007-02-16 | CVE-2007-0968 | Products Multiple Remote Denial Of Service vulnerability in Cisco Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections. | 9.0 |
| 2007-02-16 | CVE-2007-0967 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.1) allows remote attackers to cause a denial of service (device reboot) via malformed SNMP requests. | 7.8 |
| 2007-02-16 | CVE-2007-0966 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.11), when the HTTPS server is enabled, allows remote attackers to cause a denial of service (device reboot) via certain HTTPS traffic. | 7.8 |
| 2007-02-16 | CVE-2007-0965 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco FWSM 3.x before 3.1(3.2), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a long HTTP request. | 7.8 |
| 2007-02-16 | CVE-2007-0964 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Cisco FWSM 3.x before 3.1(3.18), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a malformed HTTPS request. | 5.4 |
| 2007-02-16 | CVE-2007-0963 | Products Multiple Remote Denial Of Service vulnerability in Cisco Firewall Services Module 3.1 Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.x before 3.1(3.3), when set to log at the "debug" level, allows remote attackers to cause a denial of service (device reboot) by sending packets that are not of a particular protocol such as TCP or UDP, which triggers the reboot during generation of Syslog message 710006. | 7.8 |
| 2007-02-16 | CVE-2007-0962 | Products Multiple Remote Denial Of Service vulnerability in Cisco products Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic. | 7.8 |