Network Traffic Restriction Bypass in Cisco Firewall Services Module
CVE-2007-5571

Currently unrated

Key Information:

Vendor: Cisco
Status: Firewall Services Module
Vendor: CVE Published:; 18 October 2007

Summary

The Cisco Firewall Services Module (FWSM) versions 3.1(6), 3.2(2), and earlier are susceptible to a vulnerability that allows unauthorized network traffic due to insufficient enforcement of modified Access Control Lists (ACLs). This loophole can be exploited by remote attackers to circumvent intended restrictions, potentially leading to unauthorized access or exposure of sensitive network information. Organizations using these firewall modules should consider immediate upgrades and configuration reviews to mitigate this risk.

References

http://www.securityfocus.com/bid/26109

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id?1018825

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 18, 2007
Vulnerability Reserved
Oct 18, 2007