A vulnerability exists in the Cisco Firewall Services Module (FWSM) for the Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers that may cause the Cisco FWSM to reload after processing a malformed Skinny Client Control Protocol (SCCP) message. The vulnerability exists when SCCP inspection is enabled.
Cisco has released free software updates that address this vulnerability.
All non-fixed 4.x versions of Cisco FWSM Software are affected by this vulnerability if SCCP inspection is enabled. SCCP inspection is enabled by default.
To check if [...]
Summary
A vulnerability exists in the Cisco Firewall Services Module (FWSM) for the Catalyst 6500 Series Switches and Cisco 7600 Series Routers. The vulnerability may cause the FWSM to stop forwarding traffic and may be triggered while processing multiple, crafted ICMP messages.
There are no known instances of intentional exploitation of this vulnerability. However, Cisco has observed data streams that appear to trigger this vulnerability unintentionally.
Cisco has released free software updates that address this vulnerability.
Successful exploitation of the vulnerability may cause the FWSM [...]
Sometime ago I had to do a stress test for a Cisco FWSM (Firewall Service Module) to see how the resources are consumed and if some potential traffic can temporarly affect the behavior of this device. For those of you who have don’t know what is a Cisco FWSM, here comes the definition: “Cisco Firewall Services Module (FWSM)—a high-speed, integrated firewall module for Cisco Catalyst 6500 switches and Cisco 7600 Series routers—provides the fastest firewall data rates in the industry: 5-Gbps throughput, 100,000 CPS, and [...]
[flashvideo filename=http://www.firstdigest.com/vid/archive/2009/02/Cisco6500FWSM.flv image=http://www.firstdigest.com/vid/archive/2009/02/Cisco6500FWSM.jpg /]
Which WAN Optimization vendor will consolidate and expand its market position on 2011
447 votes - Thank you all!I add the results in a blog posts so we can see over years on which [more]
CCIE home rack - Ubuntu persistent net rules
In one of my last posts, I was writing about my CCIE home rack which has one server that runs Ubuntu + [more]
Black Friday 2011 - 50% Off on INE bundles
If anybody is interested in buying INE products, do it now. I've got the following marketing e-mail. The [more]
Free streaming course CCNA 640-802 from INE
I'm sure that a lot of people out there got this info already, but for those who are not part of INE [more]
Home lab for CCIE exam training
Before I started with my preparation I was in front of a dilemma. I knew that I will need a rack to [more]
Professionals Blogs
- amyengineer.wordpress.com
Close preview
Loading... - packetlife.net
Close preview
Loading... - mellowd.co.uk
Close preview
Loading... - noshut.blogspot.com
Close preview
Loading... - etherealmind.com
Close preview
Loading... - packet-forwarding.net
Close preview
Loading... - brainbump.net
Close preview
Loading... - routing-bits.com
Close preview
Loading... - blindhog.net
Close preview
Loading... - globalconfig.net
Close preview
Loading... - CCIECisco
Close preview
Loading... - bradhedlund.com
Close preview
Loading... - cisco-tips.com
Close preview
Loading... - danielhertzberg.wordpress.com
Close preview
Loading... - Cisco Network Engineer Blog
Close preview
Loading... - gns3-labs.com
Close preview
Loading... - blog.ioshints.info
Close preview
Loading...
- amyengineer.wordpress.com
