Operating System:

[Cisco]

Published:

20 February 2014

Protect yourself against future threats.

//Service

Malicious URL Feed

Add this Australian-based feed to your firewall blacklist and SIEM to prevent compromises to your network.

Read more
Resources > Security Bulletins > ESB-2014.0214 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2014.0214
        Cisco Firewall Services Module Cut-Through Proxy Denial of
                           Service Vulnerability
                             20 February 2014

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           Cisco Firewall Services Module
Publisher:         Cisco Systems
Operating System:  Cisco
Impact/Access:     Denial of Service -- Remote/Unauthenticated
Resolution:        Patch/Upgrade
CVE Names:         CVE-2014-0710  

Original Bulletin: 
   http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140219-fwsm

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco Firewall Services Module Cut-Through Proxy Denial of Service Vulnerability

Advisory ID: cisco-sa-20140219-fwsm

Revision 1.0

For Public Release 2014 February 19 16:00  UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

Cisco Firewall Services Module (FWSM) Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a reload of an affected system.

The vulnerability is due to a race condition when releasing the memory allocated by the cut-through proxy function. An attacker could exploit this vulnerability by sending traffic to match the condition that triggers cut-through proxy authentication.

Cisco has released free software updates that address this vulnerability. Workarounds that mitigate the vulnerability are not available. This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140219-fwsm

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.20 (Darwin)

iF4EAREKAAYFAlMEtNcACgkQUddfH3/BbTqQ+wD+NFmMxteh3LtLTfRu/MLP3fUd
1JUZsmYsfWURrVRYKWIA/jCIeNeOrEZk3+us7+gkLQ0m8CPFzYtwmJv0WAuUz4nL
=CKL7
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=XH7X
-----END PGP SIGNATURE-----