New User, Welcome!     Login

application layer

Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and ASA Appliances

Vulnerable Products
+------------------

The Cisco PIX and ASA security appliances are affected by a crafted MGCP
packet vulnerability if MGCP application layer protocol inspection is
enabled and the device is running certain 7.x software versions. Version
6.3.x is not affected. MGCP inspection is not enabled by default. For
specific affected versions, refer to the "Software Versions and Fixes"
section.

Cisco Security Advisory: Multiple Vulnerabilities in Firewall Services Module

HTTPS server on the FWSM is enabled and is running software versions
3.1(5) and prior or 3.2(1). Version 2.3.x is not affected. The HTTPS
server is not enabled by default.

The FWSM is affected by a crafted MGCP packet vulnerability if MGCP
application layer protocol inspection is enabled and the device is
running software version 3.1(5) and prior. Versions 2.3.x and 3.2.x are
not affected. MGCP inspection is not enabled by default.

The FWSM is affected by an access control list corruption vulnerability
that may result in the ACL not working properly, i.e. the ACL may allow

Cisco Security Advisory: Application Inspection Vulnerability in Cisco Firewall Services Module

A vulnerability exists in the processing of data in the 
control-plane path with Layer 7 Application Inspections, that may
result in a reload of the FWSM. The vulnerability can be triggered
with standard network traffic, which is passed through the
Application Layer Protocol Inspection process.

The only FWSM release affected by this vulnerability is FWSM System
Software version 3.2(3). 

This vulnerability is documented in Cisco bug ID CSCsl08519.

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module

+---------------------------------------------------

The Cisco FWSM authentication proxy feature allows one to use AAA to
control access to network resources. Specifically, the Cisco FWSM
cut-through proxy challenges a user initially at the application
layer and then authenticates against AAA servers. After the Cisco
FWSM authenticates the user, it shifts the session flow, and all
traffic flows directly between the user's computer and the network
resource being accessed.

A denial of service vulnerability exists in some versions of Cisco

stratsec Security Advisory SS-2010-003 - Microsoft SMB Client Pool Overflow

Description
-----------

Server Message Block (SMB), also known as Common Internet File System (CIFS) 
acts as an application-layer protocol to provide shared access to files, 
printers and Inter-Process-Communication (IPC). It is also a transport for
Distributed Computing Environment / Remote Procedure Call (DCE/RPC) operations.

When initializing an SMB communication the client sends a 'Negotiate Protocol'
packet to negotiate the dialect that will be used for further communication.


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!