CVE-2007-0964

Currently unrated

Key Information:

Vendor: Cisco
Status: Firewall Services Module
Vendor: CVE Published:; 16 February 2007

Summary

Cisco FWSM 3.x before 3.1(3.18), when authentication is configured to use "aaa authentication match" or "aaa authentication include", allows remote attackers to cause a denial of service (device reboot) via a malformed HTTPS request.

References

http://www.vupen.com/english/advisories/2007/0609

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/22561

vdb-entryx_refsource_BID

http://secunia.com/advisories/24172

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Feb 16, 2007
Vulnerability Reserved
Feb 15, 2007