Cisco firewalls hit again by DoS condition

Company issues advisories on switch, router module and ASA appliance

Cisco is reporting "multiple vulnerabilities" in the firewall services module for its Catalyst 6500 switch and 7600 series router. Cisco issued a security advisory on the vulnerabilities here.

The glitches may cause the firewall module to reload after processing crafted SunRPC or certain TCP packets. Repeated exploitation could result in a sustained Denial of Service condition, the Cisco advisory states.

The module has been susceptible to DoS vulnerabilities in the past.

Cisco also says its ASA 5500 Series Adaptive Security Appliances are affected by the SunRPC vulnerabilities. The company has issued a separate advisory on this and other ASA 5500 vulnerabilities here.

The SunRPC and TCP packet vulnerabilities are independent of each other, Cisco says in the advisory. A product may be affected by one and not the other.

Cisco says the vulnerabilities were found during the troubleshooting of customer service requests and internal testing. The company issued free software updates to address them and that workarounds are also available.

Cisco also says it is not aware of any public announcements or malicious use of the vulnerability described in this advisory.

More from Cisco Subnet:


All of today's Cisco news and blogs

Cisco wants to be the standard

Wendell Odom: Tons of Answers at Networkers

Forget Apple. RIM should fear Cisco's Cius

Why You Can No Longer Afford to Consider Presence an Optional Component

The Next Generation of Routing Architecture

Hands on with the Android tablet "Cius" that Cisco announced at Cisco Live

High Availability, Headless Communists, and Other Random Thoughts from Networkers

Lieberman Cybersecurity Bill Could Change IT Procurement

Like RSS readers? Subscribe to the Cisco Subnet RSS feed

 Follow all Cisco Subnet bloggers on Twitter.Jim Duffy on Twitter


Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.

Copyright © 2010 IDG Communications, Inc.

SD-WAN buyers guide: Key questions to ask vendors (and yourself)