Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: Cisco PIX/ASA DHCP relay agent vulnerability SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Cisco PIX/ASA DHCP relay agent vulnerability
For those who didn't notice it.  On Wed, Cisco posted a bulletin about a potential memory exhaustion (denial of service) vulnerability with PIX and ASA (but not FWSM) devices running software version 7.2 configured as DHCP relays.  Updating to 7.2(2.15)  fixes the issue.

References:
http://www.kb.cert.org/vuls/id/530057
http://www.cisco.com/warp/public/707/cisco-sr-20070502-pix.shtml
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2461I will be teaching next: Reverse-Engineering Malware: Malware Analysis Tools and Techniques - SANS Gulf Region 2020

Jim

416 Posts
ISC Handler
May 4th 2007

Sign Up for Free or Log In to start participating in the conversation!