OSVDB ID: 76088

Title: Cisco Multiple Product SunRPC Message Packet Parsing Remote DoS (2011-3301)

Info

Disclosure

Oct 05, 2011

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Oct 05, 2011

Description

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Upgrade
Exploit: Exploit Unknown
Disclosure: Vendor Verified

Solution

Upgrade Firewall Services Module (FWSM) to version 3.1(21) or higher or 3.2(22) or higher or 4.0(16) or higher or 4.1(7) or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Cisco Systems, Inc.	Firewall Services Module	3.1(20)
		3.2(21)
		4.0(15)
		4.1(6)
	Adaptive Security Appliances (ASA)	7.2(5.2)
		8.0(5.24)
		8.1(2.49)
		8.2(5.10)
		8.3(2.22)
		8.4(1)
		8.5(1.0)

References

CVE ID: 2011-3301 (see also: NVD)
Secunia Advisory ID: 46278 46330
ISS X-Force ID: 70332
Related OSVDB ID: 76083 76084 76085 76086 76087 76089 76090
Mail List Post: http://seclists.org/fulldisclosure/2011/Oct/233
http://seclists.org/fulldisclosure/2011/Oct/234
Vendor Specific Advisory URL: http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtq09986
http://www.cisco.com/warp/public/707/cisco-sa-20111005-asa.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20111005-fwsm.shtml

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/76088

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Cisco Systems, Inc.

Firewall Services Module

Adaptive Security Appliances (ASA)

References

Credit