Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536.
References
Link | Resource |
---|---|
http://secunia.com/advisories/27236 | Third Party Advisory |
http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda61.shtml | Vendor Advisory |
http://www.securityfocus.com/bid/26109 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id?1018825 | Third Party Advisory VDB Entry |
http://www.vupen.com/english/advisories/2007/3530 | Permissions Required |
https://exchange.xforce.ibmcloud.com/vulnerabilities/37258 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-10-18 21:17
Updated : 2024-02-04 17:13
NVD link : CVE-2007-5571
Mitre link : CVE-2007-5571
CVE.ORG link : CVE-2007-5571
JSON object : View
Products Affected
cisco
- firewall_services_module
CWE
CWE-264
Permissions, Privileges, and Access Controls