CVE-2007-0962
First published: Fri Feb 16 2007(Updated: )
Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Firewall Services Module Software | =2.3 | |
| Cisco Firewall Services Module Software | =3.1 | |
| Cisco PIX Firewall | =7.1 | |
| Cisco ASA 5500 CSC-SSM | =7.0 | |
| Cisco ASA 5500 CSC-SSM | =7.1 | |
| Cisco PIX Firewall | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml
- http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml
- http://www.securityfocus.com/bid/22562
- http://securitytracker.com/id?1017651
- http://secunia.com/advisories/24160
- http://secunia.com/advisories/24180
- http://www.securityfocus.com/bid/22561
- http://www.securitytracker.com/id?1017652
- http://osvdb.org/33055
- http://www.vupen.com/english/advisories/2007/0608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32486
Frequently Asked Questions
What is the severity of CVE-2007-0962?
CVE-2007-0962 is classified as a high severity vulnerability due to its potential to cause a denial of service by remotely rebooting affected Cisco devices.
How do I fix CVE-2007-0962?
To remediate CVE-2007-0962, upgrade the affected Cisco devices to versions 7.0(4.14), 7.1(2.1), 2.3(4.12), or 3.1(3.24) or later.
What devices are affected by CVE-2007-0962?
CVE-2007-0962 affects Cisco PIX 500 and ASA 5500 series appliances, as well as the Firewall Services Module (FWSM) version 2.x and 3.x.
Can I still use my Cisco device with CVE-2007-0962 present?
While it is technically possible to continue using affected Cisco devices, it is highly discouraged due to the risk of denial of service attacks.
What does CVE-2007-0962 exploit?
CVE-2007-0962 exploits vulnerabilities in the 'inspect http' feature, allowing attackers to send malformed HTTP traffic to compromise the device.
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cisco
- canonical/cisco firewall services module software
- version/cisco firewall services module software/2.3
- version/cisco firewall services module software/3.1
- canonical/cisco pix firewall
- version/cisco pix firewall/7.1
- canonical/cisco asa 5500 csc-ssm
- version/cisco asa 5500 csc-ssm/7.0
- version/cisco asa 5500 csc-ssm/7.1
- version/cisco pix firewall/7.0