Device Manager
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Cisco ACE Application Control Engine Device
Manager and Application Networking Manager Vulnerabilities
Advisory ID: cisco-sa-20090225-anm
http://www.cisco.com/warp/public/707/cisco-sa-20090225-anm.shtml
This advisory is posted at
http://www.cisco.com/warp/public/707/cisco-sa-20090225-ace.shtml
Note: This advisory is being released simultaneously with a multiple
vulnerability disclosure advisory that impacts the Cisco 4700 Series
Application Control Engine Device Manager and Application Networking
Manager module software.
This advisory is posted at
http://www.cisco.com/warp/public/707/cisco-sa-20090225-anm.shtml
Crafted HTTP Packet DoS Vulnerability
+------------------------------------
Cisco ASA security appliances may experience a device reload that can be
triggered by a series of crafted HTTP packets, when configured for SSL
VPNs or when configured to accept Cisco Adaptive Security Device Manager
(ASDM) connections. Only Cisco ASA software versions 8.0 and 8.1 are
affected by this vulnerability.
Crafted TCP Packet DoS Vulnerability
+-----------------------------------
+------------------------------------------------------------+
| Product | Bug ID |
|----------------------------+-------------------------------|
| Cisco Adaptive Security | CSCtd01491 |
| Device Manager (ASDM) | |
|----------------------------+-------------------------------|
| Cisco AON Software | CSCtd01646 |
| | |
|----------------------------+-------------------------------|
| Cisco AON Healthcare for | CSCtd01652 |
Software
loader: Version 0.95
system: Version A3(1.0) [build 3.0(0)A3(0.0.148)]
system image file: (nd)/192.168.65.31/scimitar.bin
Device Manager version 1.1 (0) 20080805:0415
...
<output truncated>
This example displays the output of the show version command on a
that runs software release 8.0(2):
ASA# show version
Cisco Adaptive Security Appliance Software Version 8.0(2)
Device Manager Version 6.0(1)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM)
to manage their devices can find their software version displayed in
command. The following example shows a Cisco ASA 5500 Series Adaptive
Security Appliance that is running software version 8.4(1):
ciscoasa#show version | include Version
Cisco Adaptive Security Appliance Software Version 8.4(1)
Device Manager Version 6.4(1)
Customers who use Cisco Adaptive Security Device Manager (ASDM) to
manage devices can locate the software version in the table that is
displayed in the login window or upper-left corner of the Cisco ASDM
window.
Appliance that runs software release 8.0(2):
ASA# show version
Cisco Adaptive Security Appliance Software Version 8.0(2)
Device Manager Version 6.0(1)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM)
to manage their devices can find the version of the software
during the TCP connection termination phase. Appliances that are running
versions 7.1.x, 7.2.x, 8.0.x, 8.1.x, and 8.2.x are affected when they
are configured for any of the following features:
* SSL VPNs
* Cisco Adaptive Security Device Manager (ASDM) Administrative
Access
* Telnet Access
* SSH Access
* Virtual Telnet
* Virtual HTTP
including the OpenGL drawing system and the Mach microkernel.
CarbonCore gathers together a number of lower-level Mac OS Toolbox
managers. Some of these are deprecated but essential to porting to Carbon.
CarbonCore includes the old Device Manager, Date and Time Utilities, the
Finder interface, Mixed Mode, CFM, the Thread Manager, the Collection
Manager, the Script Manager, and more. Most of the Toolbox defines are
in here.
Description:
Appliance that runs software release 8.0(4):
ASA# show version
Cisco Adaptive Security Appliance Software Version 8.0(4)
Device Manager Version 6.0(1)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
these vulnerabilities. A Cisco ASA device configured for any of the
following features is affected:
* Secure Socket Layer Virtual Private Network (SSL VPN)
* When the affected device is configured to accept Cisco Adaptive
Security Device Manager (ASDM) connections
* TLS Proxy for Encrypted Voice Inspection
* Cut-Through Proxy for Network Access when using HTTPS
SSL VPN (or WebVPN) is enabled with the "enable <interface name>"
command in "webvpn" configuration mode. SSL VPN is disabled by default.
command. The following example shows a Cisco ASA 5500 Series Adaptive
Security Appliance that is running software version 8.3(1):
ASA#show version | include Version
Cisco Adaptive Security Appliance Software Version 8.3(1)
Device Manager Version 6.3(1)
Customers who use Cisco Adaptive Security Device Manager (ASDM) to
manage devices can locate the software version in the table that is
displayed in the login window or upper-left corner of the Cisco ASDM
window.
FWSM> show version
FWSM Firewall Version 3.2(2)10
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM)
to manage their devices can find the version of the software
displayed in the table in the login window or in the upper left
corner of the ASDM window. The version notation is similar to the
following example.
The following Cisco products are not known to be affected by this
vulnerability:
* Cisco AnyConnect VPN Client
* Cisco Adaptive Security Device Manager (ASDM)
* Cisco Building Broadband Service Manager (BBSM)
* Cisco Catalyst Operating System (Catalyst OS)
* Cisco Computer Telephony Integration Object Server (CTI)
* Cisco IOS Software
* Cisco IP/TV
Service.
Background
==========
udev is the device manager used in the Linux 2.6 kernel series.
Affected packages
=================
-------------------------------------------------------------------
Cisco Adaptive Security Appliance Software Version 7.2(3)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
the table in the login window or in the upper left corner of the ASDM
window. The version notation is similar to the following:
PIX Version 7.2(3)
HTTP server.
* Cisco bug ID CSCsr72301 - XSS in IOS HTTP Server (ping parameter)
Special Characters are not escaped in URL strings sent to the
HTTP server, via the ping parameter. The ping parameter is used
both by external applications such as Router and Security Device
Manager (SDM) as well as a direct HTTP session to Cisco IOS http
server. This vulnerability affects 12.1E based trains and all
Cisco IOS releases after 12.2(13)T.
These vulnerabilities are independent of each other. For a full
solution, download a Cisco IOS version that contains the fixes for
FWSM Firewall Version 3.2(2)10
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
the table in the login window or in the upper left corner of the ASDM
window. The version notation is similar to the following example.
FWSM Version: 3.2(2)10
example.
FWSM#show version
FWSM Firewall Version 3.2(3)
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
the table in the login window or in the upper left corner of the ASDM
window. The version notation is similar to the following example.
FWSM Version: 3.2(3)
Cisco Adaptive Security Appliance Software Version 7.2(3)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
the table in the login window or in the upper left corner of the ASDM
window. The version notation is similar to this:
PIX Version 7.2(3)
FWSM> show version
FWSM Firewall Version 3.2(2)10
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM)
to manage their devices can find the version of the software
displayed in the table in the login window or in the upper left
corner of the ASDM window. The version notation is similar to the
following example:
FWSM> show version
FWSM Firewall Version 4.0(16)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM)
to manage their devices can find the version of the software
displayed in the table in the login window or in the upper left
corner of the Cisco ASDM window. The version notation is similar to
the following example:
example.
FWSM#show version
FWSM Firewall Version 3.2(3)
Customers who use the Cisco Adaptive Security Device Manager (ASDM)
to manage their devices can find the version of the software displayed
in the table in the login window or in the upper left corner of the
ASDM window. The version notation is similar to the following example.
FWSM Version: 3.2(3)
- login as unprivileged user
- run "dc2 /hct \Device\vstor-ws60"
workaround:
Disable the vstor-ws60 driver in the device manager. This will disable the VMware Virtual Image Mounter.
command. The following example shows a Cisco ASA 5500 Series Adaptive
Security Appliance that is running software version 8.4(1):
ASA#show version | include Version
Cisco Adaptive Security Appliance Software Version 8.4(1)
Device Manager Version 6.4(1)
Customers who use Cisco ASDM to manage devices can locate the
software version in the table that is displayed in the login window
or upper-left corner of the Cisco ASDM window.
FWSM through the "show version" command as seen below.
FWSM#show version
FWSM Firewall Version 3.1(3)
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
the table in the login window or in the upper left corner of the ASDM
window. The version notation is similar to this:
FWSM Version: 3.1(3)
Cisco Adaptive Security Appliance Software Version 7.2(3)
[...]
Customers who use the Cisco Adaptive Security Device Manager (ASDM) to
manage their devices can find the version of the software displayed in
the table in the login window or in the upper left corner of the ASDM
window. The version notation is similar to the following:
PIX Version 7.2(3)
|
