Overview
A buffer overflow vulnerability in Cisco IOS Firewall Authentication Proxy may allow a remote unauthenticated attacker to execute arbitrary code or cause a denial of service.
Description
Cisco IOS Firewall Authentication Proxy is a feature that allows network administrators to apply security policies on a per-user basis. The Firewall Authentication Proxy for FTP and Telnet Sessions feature for Cisco IOS provides proxy authentication for FTP and Telnet services. Cisco IOS is vulnerable to a buffer overflow when processing user authentication credentials from an Authentication Proxy Telnet or FTP session. According to the Cisco Security Advisory, the following versions of Cisco IOS are affected:
|
Impact
A remote unauthenticated attacker may be able to execute arbitrary code or cause a denial-of-service condition on an affected system. |
Solution
Apply a patch or upgradePlease refer to the "Software Versions and Fixes" section of the Cisco Security Advisory for more information on upgrading. |
|
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
- http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtml
- http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120t/120t5/iosfw2/iosfw2_1.htm
- http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123_1/ftp_tel.htm
- http://xforce.iss.net/xforce/xfdb/22174
- http://www.securityfocus.com/bid/14770
- http://secunia.com/advisories/16719
Acknowledgements
Thanks to Cisco Systems Product Security Incident Response Team for reporting this vulnerability.
This document was written by Will Dormann, based on the Cisco Security Advisory.
Other Information
| CVE IDs: | None |
| Severity Metric: | 21.87 |
| Date Public: | 2005-09-07 |
| Date First Published: | 2005-09-07 |
| Date Last Updated: | 2005-09-09 02:50 UTC |
| Document Revision: | 14 |