SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information

Report a Vulnerability

 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#26825

Cisco Secure PIX Firewall TCP Reset Vulnerability

Overview

A vulnerability in Cisco's Secure PIX Firewall may allow a remote attacker to reset arbitrary TCP sessions.

I. Description

Cisco describes the Secure PIX Firewall as, "an easy-to-install, integrated hardware/software firewall appliance". A vulnerability in the Secure PIX Firewall may allow a remote attacker to disrupt legitimate connections that have been established through the firewall. For more technical details, please see the Cisco Security Advisory Cisco Secure PIX Firewall TCP Reset Vulnerability.

II. Impact

A remote attacker can disrupt legitimate connections that have been established through the firewall.

III. Solution

Upgrade the software on the device as described in Cisco's Security Advisory.

Systems Affected
VendorStatusDate NotifiedDate Updated
Cisco Systems Inc.Vulnerable21-Aug-2003

References

http://www.cisco.com/warp/public/707/pixtcpreset-pub.shtml
http://www.cisco.com/univercd/cc/td/doc/pcat/fw.htm

Credit

Thanks to Cisco Systems Product Security Incident Response Team for reporting this vulnerability.

This document was written by Ian A Finlay.

Other Information

Date Public:2000-07-11
Date First Published:2003-08-21
Date Last Updated:2003-08-21
CERT Advisory: 
CVE-ID(s):CVE-2000-0613
NVD-ID(s):CVE-2000-0613
US-CERT Technical Alerts: 
Severity Metric:4.18
Document Revision:8

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2003 Carnegie Mellon University
Disclaimers and copyright information
Get a PDF Reader