cvelistv5 - cve-2007-0968

CVE-2007-0968 (GCVE-0-2007-0968)

Vulnerability from cvelistv5 – Published: 2007-02-16 00:00 – Updated: 2024-08-07 12:34

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.vupen.com/english/advisories/2007/0609	vdb-entryx_refsource_VUPEN
	http://www.securityfocus.com/bid/22561	vdb-entryx_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.securitytracker.com/id?1017650	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/24172	third-party-advisoryx_refsource_SECUNIA
	http://www.cisco.com/en/US/products/products_secu…	vendor-advisoryx_refsource_CISCO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:34:21.354Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2007-0609",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0609"
          },
          {
            "name": "22561",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/22561"
          },
          {
            "name": "cisco-fwsm-acl-security-bypass(32521)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
          },
          {
            "name": "1017650",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1017650"
          },
          {
            "name": "24172",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24172"
          },
          {
            "name": "20070214 Multiple Vulnerabilities in Firewall Services Module",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-02-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "ADV-2007-0609",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0609"
        },
        {
          "name": "22561",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/22561"
        },
        {
          "name": "cisco-fwsm-acl-security-bypass(32521)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
        },
        {
          "name": "1017650",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1017650"
        },
        {
          "name": "24172",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24172"
        },
        {
          "name": "20070214 Multiple Vulnerabilities in Firewall Services Module",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0968",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "ADV-2007-0609",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0609"
            },
            {
              "name": "22561",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/22561"
            },
            {
              "name": "cisco-fwsm-acl-security-bypass(32521)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
            },
            {
              "name": "1017650",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1017650"
            },
            {
              "name": "24172",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24172"
            },
            {
              "name": "20070214 Multiple Vulnerabilities in Firewall Services Module",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-0968",
    "datePublished": "2007-02-16T00:00:00",
    "dateReserved": "2007-02-15T00:00:00",
    "dateUpdated": "2024-08-07T12:34:21.354Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E9A8528D-DF6A-4493-A77E-CBF08359F2E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F90E9070-781D-4D3D-98EB-5B6DB9D3C75E\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad no especificada en Cisco Firewall Services Module (FWSM) versiones anteriores a 2.3(4.7) y 3.x versiones anteriores a 3.1(3.1) provoca que las entradas de control de acceso (ACE) en un ACL ser evaluadas inapropiadamente, lo cual permite a usuarios remotos autenticados evitar protecciones ACL concretas intencionadas.\"}]",
      "id": "CVE-2007-0968",
      "lastModified": "2024-11-21T00:27:11.027",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:C/I:C/A:C\", \"baseScore\": 9.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2007-02-16T00:28:00.000",
      "references": "[{\"url\": \"http://secunia.com/advisories/24172\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/22561\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id?1017650\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0609\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/32521\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/24172\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/22561\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id?1017650\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0609\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/32521\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-0968\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-02-16T00:28:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en Cisco Firewall Services Module (FWSM) versiones anteriores a 2.3(4.7) y 3.x versiones anteriores a 3.1(3.1) provoca que las entradas de control de acceso (ACE) en un ACL ser evaluadas inapropiadamente, lo cual permite a usuarios remotos autenticados evitar protecciones ACL concretas intencionadas.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:C/I:C/A:C\",\"baseScore\":9.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9A8528D-DF6A-4493-A77E-CBF08359F2E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F90E9070-781D-4D3D-98EB-5B6DB9D3C75E\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/24172\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/22561\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1017650\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/0609\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/32521\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/24172\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/22561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1017650\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/0609\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/32521\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-JG6C-X8JV-83XC

Vulnerability from github – Published: 2022-05-01 17:48 – Updated: 2022-05-01 17:48

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-0968"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-02-16T00:28:00Z",
    "severity": "HIGH"
  },
  "details": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.",
  "id": "GHSA-jg6c-x8jv-83xc",
  "modified": "2022-05-01T17:48:54Z",
  "published": "2022-05-01T17:48:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-0968"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24172"
    },
    {
      "type": "WEB",
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/22561"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1017650"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/0609"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-0968

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-0968

Aliases

CVE-2007-0968

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-0968",
    "description": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.",
    "id": "GSD-2007-0968"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-0968"
      ],
      "details": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.",
      "id": "GSD-2007-0968",
      "modified": "2023-12-13T01:21:35.867067Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-0968",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2007-0609",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/0609"
          },
          {
            "name": "22561",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/22561"
          },
          {
            "name": "cisco-fwsm-acl-security-bypass(32521)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
          },
          {
            "name": "1017650",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1017650"
          },
          {
            "name": "24172",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24172"
          },
          {
            "name": "20070214 Multiple Vulnerabilities in Firewall Services Module",
            "refsource": "CISCO",
            "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0968"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20070214 Multiple Vulnerabilities in Firewall Services Module",
              "refsource": "CISCO",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
            },
            {
              "name": "24172",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/24172"
            },
            {
              "name": "22561",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/22561"
            },
            {
              "name": "1017650",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1017650"
            },
            {
              "name": "ADV-2007-0609",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/0609"
            },
            {
              "name": "cisco-fwsm-acl-security-bypass(32521)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-07-29T01:30Z",
      "publishedDate": "2007-02-16T00:28Z"
    }
  }
}

VAR-200702-0348

Vulnerability from variot - Updated: 2023-12-18 12:12

Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections. Cisco Firewall Services Module fails to properly inspect SIP messages. This vulnerability may allow a remote attacker to cause a denial of service condition. Multiple Cisco products are prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to cause vulnerable devices to reload, potentially causing denial-of-service conditions. Multiple security vulnerabilities exist in Cisco PIX 500 Series Security Appliances and Cisco ASA 5500 Series Adaptive Security Appliances: Enhanced Inspection Malformed HTTP Traffic +--------------------- -------------------------- Cisco PIX and ASA Security Appliances may crash when checking for malformed HTTP requests if Enhanced HTTP Inspection is enabled . If HTTP application inspection is enabled, the configuration will contain a line similar to inspect http, where the name of the specific HTTP mapping. Note that normal HTTP inspection (configured via inspect http, without HTTP mapping) is not affected by this vulnerability. This vulnerability is documented in Cisco Bug ID as CSCsd75794. To trigger this vulnerability, the SIP fixup (for 6.x software) or inspect (for 7.x software) function must be enabled. SIP fixup (in 6.x and earlier) and SIP check (in 7. x and earlier) is enabled by default. This vulnerability is documented in Cisco Bug IDs as CSCsd97077 and CSCse27708. Check malformed TCP packet flow+------------------------------------------- ------ Cisco PIX and ASA equipment may crash when processing malformed packet flow based on TCP protocol. Protocols must be handled through the inspect function. The message may be sent to the device, or it may only pass through the device. Cisco PIX and ASA appliances can inspect the following TCP-based protocols: * Computer Telephony Interface Quick Buffer Encoding (CITQBE) * Distributed Computing Environment/Remote Procedure Call (DCE/RPC) * Domain Name Service (DNS) * Extended Simple Mail Transfer Protocol (ESMTP) * File Transfer Protocol (FTP) * H.323 Protocol * Hypertext Transfer Protocol (HTTP) * Internet Location Server (ILS) * Instant Messaging (IM) * Point-to-Point Tunneling Protocol (PPTP) * Remote Shell (RSH ) * Real Time Streaming Protocol (RTSP) * Session Initiation Protocol (SIP) *...

Secunia is proud to announce the availability of the Secunia Software Inspector.

The Secunia Software Inspector is a free service that detects insecure versions of software that you may have installed in your system. When insecure versions are detected, the Secunia Software Inspector also provides thorough guidelines for updating the software to the latest secure version from the vendor.

1) An unspecified error within the enhanced inspection of HTTP traffic can be exploited to cause the device to reload via specially crafted HTTP traffic.

Successful exploitation requires that enhanced inspection is enabled.

2) An error within the inspection of SIP packets can be exploited to cause the device to reload via specially crafted SIP packets.

Successful exploitation requires that SIP inspection is enabled.

3) An unspecified error when processing malformed HTTPS requests can be exploited to cause the device to reload by sending specially crafted HTTPS requests.

Successful exploitation requires that "authentication for network access" (auth-proxy) is enabled.

4) An error when processing HTTP requests with a very long URL can be exploited to cause the device to reload, but requires that "authentication for network access" (auth-proxy) is enabled.

5) An unspecified error exists when processing HTTPS traffic that is directed to the FWSM. This can be exploited to cause the device to reload by sending specially crafted HTTPS requests, but requires that the HTTPS server is enabled.

6) An unspecified error when processing malformed SNMP requests from a trusted device can be exploited to cause the affected device to reload.

Successful exploitation requires that the other, trusted device has explicit SNMP poll access.

Note: Only an administrative user can change ACLs. Additionally, this does not affected devices which are reloaded after ACLs have been manipulated.

A vulnerability that could cause the device to reload when "debugging" is enabled has also been reported.

SOLUTION: Apply updated software. Please see vendor advisory for a patch matrix.

PROVIDED AND/OR DISCOVERED BY: Reported by the vendor.

ORIGINAL ADVISORY: http://www.cisco.com/warp/public/707/cisco-sa-20070214-fwsm.shtml

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200702-0348",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "3.1"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.3"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "firewall services module",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "2.3(4.7)"
      },
      {
        "model": "pix/asa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0.4.3"
      },
      {
        "model": "pix/asa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0.4"
      },
      {
        "model": "pix/asa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0.1.4"
      },
      {
        "model": "pix/asa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0"
      },
      {
        "model": "pix/asa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.1(2)"
      },
      {
        "model": "pix/asa",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0(5)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3.5(112)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3.3(133)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3.2"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3.1"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3(5)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3(3.109)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3(3.102)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3(3)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3(1)"
      },
      {
        "model": "pix firewall",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(3.24)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(1.9)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(1.7)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(3.3)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(3.2)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(3.18)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(3.11)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(3.1)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.3(4.7)"
      },
      {
        "model": "firewall services module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.3(4)"
      },
      {
        "model": "pix/asa",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.2(2.10)"
      },
      {
        "model": "pix/asa",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.1(2.5)"
      },
      {
        "model": "pix/asa",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0(5.2)"
      },
      {
        "model": "pix firewall",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.3(5.115)"
      },
      {
        "model": "firewall services module",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.1(4)"
      },
      {
        "model": "firewall services module",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.3(4.12)"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "db": "BID",
        "id": "22561"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Security bulletin",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2007-0968",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.0,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": true,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "Single",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 9.0,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2007-0968",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.0,
            "id": "VHN-24330",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:S/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2007-0968",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#430969",
            "trust": 0.8,
            "value": "12.60"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200702-313",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-24330",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections. Cisco Firewall Services Module fails to properly inspect SIP messages.  This vulnerability may allow a remote attacker to cause a denial of service condition. Multiple Cisco products are prone to multiple denial-of-service vulnerabilities. \nAttackers can exploit these issues to cause vulnerable devices to reload, potentially causing denial-of-service conditions. Multiple security vulnerabilities exist in Cisco PIX 500 Series Security Appliances and Cisco ASA 5500 Series Adaptive Security Appliances: Enhanced Inspection Malformed HTTP Traffic +--------------------- -------------------------- Cisco PIX and ASA Security Appliances may crash when checking for malformed HTTP requests if Enhanced HTTP Inspection is enabled . If HTTP application inspection is enabled, the configuration will contain a line similar to inspect http, where the name of the specific HTTP mapping. Note that normal HTTP inspection (configured via inspect http, without HTTP mapping) is not affected by this vulnerability. This vulnerability is documented in Cisco Bug ID as CSCsd75794. To trigger this vulnerability, the SIP fixup (for 6.x software) or inspect (for 7.x software) function must be enabled. SIP fixup (in 6.x and earlier) and SIP check (in 7. x and earlier) is enabled by default. This vulnerability is documented in Cisco Bug IDs as CSCsd97077 and CSCse27708. Check malformed TCP packet flow+------------------------------------------- ------ Cisco PIX and ASA equipment may crash when processing malformed packet flow based on TCP protocol. Protocols must be handled through the inspect function. The message may be sent to the device, or it may only pass through the device. Cisco PIX and ASA appliances can inspect the following TCP-based protocols: * Computer Telephony Interface Quick Buffer Encoding (CITQBE) * Distributed Computing Environment/Remote Procedure Call (DCE/RPC) * Domain Name Service (DNS) * Extended Simple Mail Transfer Protocol (ESMTP) * File Transfer Protocol (FTP) * H.323 Protocol * Hypertext Transfer Protocol (HTTP) * Internet Location Server (ILS) * Instant Messaging (IM) * Point-to-Point Tunneling Protocol (PPTP) * Remote Shell (RSH ) * Real Time Streaming Protocol (RTSP) * Session Initiation Protocol (SIP) *... \n\n----------------------------------------------------------------------\n\nSecunia is proud to announce the availability of the Secunia Software\nInspector. \n\nThe Secunia Software Inspector is a free service that detects insecure\nversions of software that you may have installed in your system. When\ninsecure versions are detected, the Secunia Software Inspector also\nprovides thorough guidelines for updating the software to the latest\nsecure version from the vendor. \n\n1) An unspecified error within the enhanced inspection of HTTP\ntraffic can be exploited to cause the device to reload via specially\ncrafted HTTP traffic. \n\nSuccessful exploitation requires that enhanced inspection is\nenabled. \n\n2) An error within the inspection of SIP packets can be exploited to\ncause the device to reload via specially crafted SIP packets. \n\nSuccessful exploitation requires that SIP inspection is enabled. \n\n3) An unspecified error when processing malformed HTTPS requests can\nbe exploited to cause the device to reload by sending specially\ncrafted HTTPS requests. \n\nSuccessful exploitation requires that \"authentication for network\naccess\" (auth-proxy) is enabled. \n\n4) An error when processing HTTP requests with a very long URL can be\nexploited to cause the device to reload, but requires that\n\"authentication for network access\" (auth-proxy) is enabled. \n\n5) An unspecified error exists when processing HTTPS traffic that is\ndirected to the FWSM. This can be exploited to cause the device to\nreload by sending specially crafted HTTPS requests, but requires that\nthe HTTPS server is enabled. \n\n6) An unspecified error when processing malformed SNMP requests from\na trusted device can be exploited to cause the affected device to\nreload. \n\nSuccessful exploitation requires that the other, trusted device has\nexplicit SNMP poll access. \n\nNote: Only an administrative user can change ACLs. Additionally, this\ndoes not affected devices which are reloaded after ACLs have been\nmanipulated. \n\nA vulnerability that could cause the device to reload when\n\"debugging\" is enabled has also been reported. \n\nSOLUTION:\nApply updated software. Please see vendor advisory for a patch\nmatrix. \n\nPROVIDED AND/OR DISCOVERED BY:\nReported by the vendor. \n\nORIGINAL ADVISORY:\nhttp://www.cisco.com/warp/public/707/cisco-sa-20070214-fwsm.shtml\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "db": "BID",
        "id": "22561"
      },
      {
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "db": "PACKETSTORM",
        "id": "54444"
      }
    ],
    "trust": 2.79
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2007-0968",
        "trust": 2.8
      },
      {
        "db": "SECTRACK",
        "id": "1017650",
        "trust": 2.5
      },
      {
        "db": "BID",
        "id": "22561",
        "trust": 2.0
      },
      {
        "db": "SECUNIA",
        "id": "24172",
        "trust": 1.8
      },
      {
        "db": "VUPEN",
        "id": "ADV-2007-0609",
        "trust": 1.7
      },
      {
        "db": "CERT/CC",
        "id": "VU#430969",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313",
        "trust": 0.7
      },
      {
        "db": "CISCO",
        "id": "20070214 MULTIPLE VULNERABILITIES IN FIREWALL SERVICES MODULE",
        "trust": 0.6
      },
      {
        "db": "XF",
        "id": "32521",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-24330",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "54444",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "db": "BID",
        "id": "22561"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "db": "PACKETSTORM",
        "id": "54444"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "id": "VAR-200702-0348",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-24330"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T12:12:46.526000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20070214-fwsm",
        "trust": 0.8,
        "url": "http://www.cisco.com/en/us/products/csa/cisco-sa-20070214-fwsm.html"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/22561"
      },
      {
        "trust": 1.7,
        "url": "http://www.cisco.com/en/us/products/products_security_advisory09186a00807e2481.shtml"
      },
      {
        "trust": 1.7,
        "url": "http://www.securitytracker.com/id?1017650"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/24172"
      },
      {
        "trust": 1.2,
        "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070214-fwsm.shtml"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2007/0609"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
      },
      {
        "trust": 0.8,
        "url": "http://securitytracker.com/alerts/2007/feb/1017650.html"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-0968"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-0968"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2007/0609"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/xforce/xfdb/32521"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/"
      },
      {
        "trust": 0.3,
        "url": "http://www.kb.cert.org/vuls/id/430969"
      },
      {
        "trust": 0.3,
        "url": "/archive/1/460079"
      },
      {
        "trust": 0.3,
        "url": "/archive/1/460080"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070214-pix.shtml"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/software_inspector/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/8614/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/24172/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "db": "BID",
        "id": "22561"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "db": "PACKETSTORM",
        "id": "54444"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "db": "BID",
        "id": "22561"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "db": "PACKETSTORM",
        "id": "54444"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2007-02-16T00:00:00",
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "date": "2007-02-16T00:00:00",
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "date": "2007-02-14T00:00:00",
        "db": "BID",
        "id": "22561"
      },
      {
        "date": "2012-06-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "date": "2007-02-16T06:49:41",
        "db": "PACKETSTORM",
        "id": "54444"
      },
      {
        "date": "2007-02-16T00:28:00",
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "date": "2007-02-15T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2007-02-22T00:00:00",
        "db": "CERT/CC",
        "id": "VU#430969"
      },
      {
        "date": "2017-07-29T00:00:00",
        "db": "VULHUB",
        "id": "VHN-24330"
      },
      {
        "date": "2016-07-06T14:40:00",
        "db": "BID",
        "id": "22561"
      },
      {
        "date": "2012-06-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2007-001577"
      },
      {
        "date": "2017-07-29T01:30:32.297000",
        "db": "NVD",
        "id": "CVE-2007-0968"
      },
      {
        "date": "2007-06-27T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Firewall Services Module vulnerable to DoS via inspection of malformed SIP messages",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#430969"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200702-313"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2007-0968

Vulnerability from fkie_nvd - Published: 2007-02-16 00:28 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/24172	Vendor Advisory
cve@mitre.org	http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/22561
cve@mitre.org	http://www.securitytracker.com/id?1017650
cve@mitre.org	http://www.vupen.com/english/advisories/2007/0609
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/32521
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24172	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/22561
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1017650
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/0609
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/32521

Impacted products

	Vendor	Product	Version
	cisco	firewall_services_module	2.3
	cisco	firewall_services_module	3.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "E9A8528D-DF6A-4493-A77E-CBF08359F2E4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F90E9070-781D-4D3D-98EB-5B6DB9D3C75E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en Cisco Firewall Services Module (FWSM) versiones anteriores a 2.3(4.7) y 3.x versiones anteriores a 3.1(3.1) provoca que las entradas de control de acceso (ACE) en un ACL ser evaluadas inapropiadamente, lo cual permite a usuarios remotos autenticados evitar protecciones ACL concretas intencionadas."
    }
  ],
  "id": "CVE-2007-0968",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-02-16T00:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/24172"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/22561"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1017650"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/0609"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/24172"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/22561"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1017650"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/0609"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32521"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2007-AVI-090

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités sur les produits Cisco PIX, ASA et FWSM permettent de réaliser un déni de service à distance, de contourner la politique de sécurité ou d'élever ses privilèges.

Description

Plusieurs vulnérabilités affectent les produits Cisco précités :

une erreur dans la méthode d'authentification LOCAL de PIX 6.x permet à un utilisateur authentifié malveillant disposant des privilèges minimaux (level 0) d'obtenir les privilèges maximaux (level 15) ;
une erreur dans la gestion des listes de contrôle d'accès (ACL) par FWSM permet à un utilisateur malveillant de ne pas faire évaluer des règles de contrôle d'accès ou de les faire évaluer dans un ordre incorrect ;
une erreur dans le traitement des packets SIP malformés provoque un rechargement du système ou un arrêt inopiné. Un utilisateur malveillant peut provoquer un déni de service à distance au moyen d'un paquet SIP conçu à cet effet ;
une erreur dans l'inspection du trafic HTTP, quand cette inspection est activée, provoque le rechargement ou l'arrêt du système. Un utilisateur malveillant peut provoquer un déni de service à distance au moyen d'une communication HTTP conçue à cet effet ;
une erreur dans l'inspection du trafic des protocoles basés sur TCP, quand cette inspection est activée, provoque le rechargement ou l'arrêt du système. Un utilisateur malveillant peut provoquer un déni de service à distance au moyen d'une communication basée sur TCP (HTTP, FTP...) conçue à cet effet ;
Plusieurs erreurs affectant le traitement des requêtes HTTPS, SNMP et HTTP (URL longues) par FWSM 3.x provoquent le rechargement du système. Dans certaines conditions, un utilisateur malveillant peut provoquer un déni de service à distance au moyen de trafic conçu à cet effet.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Cisco PIX 500 versions 6.x et 7.x ;
Cisco	N/A	Cisco ASA 5500 versions 7.x ;
Cisco	N/A	Cisco Firewall Service Module (FWSM) versions 2.x et 3.x.

References

Title

Publication Time

Tags

Bulletins Cisco du 14 février 2007	None	vendor-advisory
Bulletin de sécurité Cisco ID 77853 du 14 février 2007 :	-	other
Bulletin de sécurité Cisco ID 72327 du 14 février 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco PIX 500 versions 6.x et 7.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco ASA 5500 versions 7.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Firewall Service Module (FWSM) versions 2.x et 3.x.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s affectent les produits Cisco pr\u00e9cit\u00e9s :\n\n-   une erreur dans la m\u00e9thode d\u0027authentification LOCAL de PIX 6.x\n    permet \u00e0 un utilisateur authentifi\u00e9 malveillant disposant des\n    privil\u00e8ges minimaux (level 0) d\u0027obtenir les privil\u00e8ges maximaux\n    (level 15) ;\n-   une erreur dans la gestion des listes de contr\u00f4le d\u0027acc\u00e8s (ACL) par\n    FWSM permet \u00e0 un utilisateur malveillant de ne pas faire \u00e9valuer des\n    r\u00e8gles de contr\u00f4le d\u0027acc\u00e8s ou de les faire \u00e9valuer dans un ordre\n    incorrect ;\n-   une erreur dans le traitement des packets SIP malform\u00e9s provoque un\n    rechargement du syst\u00e8me ou un arr\u00eat inopin\u00e9. Un utilisateur\n    malveillant peut provoquer un d\u00e9ni de service \u00e0 distance au moyen\n    d\u0027un paquet SIP con\u00e7u \u00e0 cet effet ;\n-   une erreur dans l\u0027inspection du trafic HTTP, quand cette inspection\n    est activ\u00e9e, provoque le rechargement ou l\u0027arr\u00eat du syst\u00e8me. Un\n    utilisateur malveillant peut provoquer un d\u00e9ni de service \u00e0 distance\n    au moyen d\u0027une communication HTTP con\u00e7ue \u00e0 cet effet ;\n-   une erreur dans l\u0027inspection du trafic des protocoles bas\u00e9s sur TCP,\n    quand cette inspection est activ\u00e9e, provoque le rechargement ou\n    l\u0027arr\u00eat du syst\u00e8me. Un utilisateur malveillant peut provoquer un\n    d\u00e9ni de service \u00e0 distance au moyen d\u0027une communication bas\u00e9e sur\n    TCP (HTTP, FTP...) con\u00e7ue \u00e0 cet effet ;\n-   Plusieurs erreurs affectant le traitement des requ\u00eates HTTPS, SNMP\n    et HTTP (URL longues) par FWSM 3.x provoquent le rechargement du\n    syst\u00e8me. Dans certaines conditions, un utilisateur malveillant peut\n    provoquer un d\u00e9ni de service \u00e0 distance au moyen de trafic con\u00e7u \u00e0\n    cet effet.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-0966",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0966"
    },
    {
      "name": "CVE-2007-0963",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0963"
    },
    {
      "name": "CVE-2007-0964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0964"
    },
    {
      "name": "CVE-2007-0960",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0960"
    },
    {
      "name": "CVE-2007-0967",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0967"
    },
    {
      "name": "CVE-2007-0962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0962"
    },
    {
      "name": "CVE-2007-0968",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0968"
    },
    {
      "name": "CVE-2007-0961",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0961"
    },
    {
      "name": "CVE-2007-0965",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0965"
    },
    {
      "name": "CVE-2007-0959",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0959"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 77853 du 14 f\u00e9vrier 2007 :",
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 72327 du 14 f\u00e9vrier 2007 :",
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
    }
  ],
  "reference": "CERTA-2007-AVI-090",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-02-16T00:00:00.000000"
    },
    {
      "description": "correction des liens.",
      "revision_date": "2007-02-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s sur les produits \u003cspan class=\"textit\"\u003eCisco\nPIX, ASA\u003c/span\u003e et \u003cspan class=\"textit\"\u003eFWSM\u003c/span\u003e permettent de\nr\u00e9aliser un d\u00e9ni de service \u00e0 distance, de contourner la politique de\ns\u00e9curit\u00e9 ou d\u0027\u00e9lever ses privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s de produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins Cisco du 14 f\u00e9vrier 2007",
      "url": null
    }
  ]
}

CERTA-2007-AVI-090

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités sur les produits Cisco PIX, ASA et FWSM permettent de réaliser un déni de service à distance, de contourner la politique de sécurité ou d'élever ses privilèges.

Description

Plusieurs vulnérabilités affectent les produits Cisco précités :

une erreur dans la méthode d'authentification LOCAL de PIX 6.x permet à un utilisateur authentifié malveillant disposant des privilèges minimaux (level 0) d'obtenir les privilèges maximaux (level 15) ;
une erreur dans la gestion des listes de contrôle d'accès (ACL) par FWSM permet à un utilisateur malveillant de ne pas faire évaluer des règles de contrôle d'accès ou de les faire évaluer dans un ordre incorrect ;
une erreur dans le traitement des packets SIP malformés provoque un rechargement du système ou un arrêt inopiné. Un utilisateur malveillant peut provoquer un déni de service à distance au moyen d'un paquet SIP conçu à cet effet ;
une erreur dans l'inspection du trafic HTTP, quand cette inspection est activée, provoque le rechargement ou l'arrêt du système. Un utilisateur malveillant peut provoquer un déni de service à distance au moyen d'une communication HTTP conçue à cet effet ;
une erreur dans l'inspection du trafic des protocoles basés sur TCP, quand cette inspection est activée, provoque le rechargement ou l'arrêt du système. Un utilisateur malveillant peut provoquer un déni de service à distance au moyen d'une communication basée sur TCP (HTTP, FTP...) conçue à cet effet ;
Plusieurs erreurs affectant le traitement des requêtes HTTPS, SNMP et HTTP (URL longues) par FWSM 3.x provoquent le rechargement du système. Dans certaines conditions, un utilisateur malveillant peut provoquer un déni de service à distance au moyen de trafic conçu à cet effet.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Cisco PIX 500 versions 6.x et 7.x ;
Cisco	N/A	Cisco ASA 5500 versions 7.x ;
Cisco	N/A	Cisco Firewall Service Module (FWSM) versions 2.x et 3.x.

References

Title

Publication Time

Tags

Bulletins Cisco du 14 février 2007	None	vendor-advisory
Bulletin de sécurité Cisco ID 77853 du 14 février 2007 :	-	other
Bulletin de sécurité Cisco ID 72327 du 14 février 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco PIX 500 versions 6.x et 7.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco ASA 5500 versions 7.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Firewall Service Module (FWSM) versions 2.x et 3.x.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s affectent les produits Cisco pr\u00e9cit\u00e9s :\n\n-   une erreur dans la m\u00e9thode d\u0027authentification LOCAL de PIX 6.x\n    permet \u00e0 un utilisateur authentifi\u00e9 malveillant disposant des\n    privil\u00e8ges minimaux (level 0) d\u0027obtenir les privil\u00e8ges maximaux\n    (level 15) ;\n-   une erreur dans la gestion des listes de contr\u00f4le d\u0027acc\u00e8s (ACL) par\n    FWSM permet \u00e0 un utilisateur malveillant de ne pas faire \u00e9valuer des\n    r\u00e8gles de contr\u00f4le d\u0027acc\u00e8s ou de les faire \u00e9valuer dans un ordre\n    incorrect ;\n-   une erreur dans le traitement des packets SIP malform\u00e9s provoque un\n    rechargement du syst\u00e8me ou un arr\u00eat inopin\u00e9. Un utilisateur\n    malveillant peut provoquer un d\u00e9ni de service \u00e0 distance au moyen\n    d\u0027un paquet SIP con\u00e7u \u00e0 cet effet ;\n-   une erreur dans l\u0027inspection du trafic HTTP, quand cette inspection\n    est activ\u00e9e, provoque le rechargement ou l\u0027arr\u00eat du syst\u00e8me. Un\n    utilisateur malveillant peut provoquer un d\u00e9ni de service \u00e0 distance\n    au moyen d\u0027une communication HTTP con\u00e7ue \u00e0 cet effet ;\n-   une erreur dans l\u0027inspection du trafic des protocoles bas\u00e9s sur TCP,\n    quand cette inspection est activ\u00e9e, provoque le rechargement ou\n    l\u0027arr\u00eat du syst\u00e8me. Un utilisateur malveillant peut provoquer un\n    d\u00e9ni de service \u00e0 distance au moyen d\u0027une communication bas\u00e9e sur\n    TCP (HTTP, FTP...) con\u00e7ue \u00e0 cet effet ;\n-   Plusieurs erreurs affectant le traitement des requ\u00eates HTTPS, SNMP\n    et HTTP (URL longues) par FWSM 3.x provoquent le rechargement du\n    syst\u00e8me. Dans certaines conditions, un utilisateur malveillant peut\n    provoquer un d\u00e9ni de service \u00e0 distance au moyen de trafic con\u00e7u \u00e0\n    cet effet.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-0966",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0966"
    },
    {
      "name": "CVE-2007-0963",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0963"
    },
    {
      "name": "CVE-2007-0964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0964"
    },
    {
      "name": "CVE-2007-0960",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0960"
    },
    {
      "name": "CVE-2007-0967",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0967"
    },
    {
      "name": "CVE-2007-0962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0962"
    },
    {
      "name": "CVE-2007-0968",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0968"
    },
    {
      "name": "CVE-2007-0961",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0961"
    },
    {
      "name": "CVE-2007-0965",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0965"
    },
    {
      "name": "CVE-2007-0959",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0959"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 77853 du 14 f\u00e9vrier 2007 :",
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco ID 72327 du 14 f\u00e9vrier 2007 :",
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"
    }
  ],
  "reference": "CERTA-2007-AVI-090",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-02-16T00:00:00.000000"
    },
    {
      "description": "correction des liens.",
      "revision_date": "2007-02-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s sur les produits \u003cspan class=\"textit\"\u003eCisco\nPIX, ASA\u003c/span\u003e et \u003cspan class=\"textit\"\u003eFWSM\u003c/span\u003e permettent de\nr\u00e9aliser un d\u00e9ni de service \u00e0 distance, de contourner la politique de\ns\u00e9curit\u00e9 ou d\u0027\u00e9lever ses privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s de produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins Cisco du 14 f\u00e9vrier 2007",
      "url": null
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-0968 (GCVE-0-2007-0968)

GHSA-JG6C-X8JV-83XC

GSD-2007-0968

VAR-200702-0348

FKIE_CVE-2007-0968

CERTA-2007-AVI-090

Description

Solution

CERTA-2007-AVI-090

Description

Solution

Tags

Sightings

Nomenclature