Vulnerability Note VU#26825

Cisco Secure PIX Firewall TCP Reset Vulnerability

Original Release date: 21 Aug 2003 | Last revised: 21 Aug 2003

Overview

A vulnerability in Cisco's Secure PIX Firewall may allow a remote attacker to reset arbitrary TCP sessions.

Description

Cisco describes the Secure PIX Firewall as, "an easy-to-install, integrated hardware/software firewall appliance". A vulnerability in the Secure PIX Firewall may allow a remote attacker to disrupt legitimate connections that have been established through the firewall. For more technical details, please see the Cisco Security Advisory Cisco Secure PIX Firewall TCP Reset Vulnerability.

Impact

A remote attacker can disrupt legitimate connections that have been established through the firewall.

Solution

Upgrade the software on the device as described in Cisco's Security Advisory.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Cisco Systems Inc.Affected-21 Aug 2003
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

Thanks to Cisco Systems Product Security Incident Response Team for reporting this vulnerability.

This document was written by Ian A Finlay.

Other Information

  • CVE IDs: CVE-2000-0613
  • Date Public: 11 Jul 2000
  • Date First Published: 21 Aug 2003
  • Date Last Updated: 21 Aug 2003
  • Severity Metric: 4.18
  • Document Revision: 8

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.