Denial of Service in Cisco Firewall Services Module with HTTPS Server
CVE-2007-0966

Currently unrated

Key Information:

Vendor: Cisco
Status: Firewall Services Module
Vendor: CVE Published:; 16 February 2007

Summary

The Cisco Firewall Services Module (FWSM) versions prior to 3.1(3.11) contain a vulnerability that, when the HTTPS server is activated, can be exploited by remote attackers to initiate a denial of service condition. This exploitation can result in the affected device rebooting due to specially crafted HTTPS traffic. Addressing this issue is crucial to maintaining the availability and reliability of network security services.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/32497

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2007/0609

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/32513

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Feb 16, 2007
Vulnerability Reserved
Feb 15, 2007