发布日期:2013-04-10
更新日期:2013-04-12受影响系统:
Cisco Firewall Services Module Cisco Firewall Services Module
Cisco Firewall Services Module Cisco Firewall Services Module
Cisco Firewall Services Module 3.2
Cisco Firewall Services Module 3.1
Cisco ASA 5500 Series Adaptive Security Appliance 8.0 - 8.6
Cisco ASA 5500 Series Adaptive Security Appliance 7.2
Cisco ASA 5500 Series Adaptive Security Appliance 7.1
Cisco ASA 5500 Series Adaptive Security Appliance 7.0
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 59001
CVE(CAN) ID: CVE-2013-1149
Cisco ASA 5500系列自适应安全设备是用于提供安全和VPN服务的模块化平台,可提供防火墙、IPS、anti-X和VPN服务。
Cisco Adaptive Security Appliance、Cisco FWSM如果启用了IKE v1,在实现上存在远程拒绝服务漏洞,攻击者可利用此漏洞重新加载受影响设备。
<*来源:Cisco
链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-fwsm
*>建议:
--------------------------------------------------------------------------------
临时解决方法:
禁用VPN访问,改用SSH或HTTPS
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-20130410-fwsm)以及相应补丁:
cisco-sa-20130410-fwsm:Multiple Vulnerabilities in Cisco Firewall Services Module Software
链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-fwsmCisco IOS XE IPv6 Multicast和IPv6 MVPN Traffic远程拒绝服务漏洞Cisco Unified MeetingPlace 任意登录安全漏洞(CVE-2013-1169)相关资讯 Cisco安全漏洞
- Cisco Prime Data Center Network (09/23/2013 05:34:39)
- Cisco WebEx ARF Player内存破坏漏 (09/06/2013 13:42:59)
- Cisco Unified Communications (08/23/2013 19:08:57)
| - Cisco Prime Data Center Network (09/22/2013 18:17:00)
- Cisco Secure Access Control (09/06/2013 13:42:31)
- Cisco VC220/VC240 Network (08/03/2013 14:33:33)
|
本文评论 查看全部评论 (0)
评论声明- 尊重网上道德,遵守中华人民共和国的各项有关法律法规
- 承担一切因您的行为而直接或间接导致的民事或刑事法律责任
- 本站管理人员有权保留或删除其管辖留言中的任意内容
- 本站有权在网站内转载或引用您的评论
- 参与本评论
|
易网时代-编程资源站