Cisco PIX TACACS+/RADIUS HTTP代理服务器缓冲区溢出漏洞

发布时间：2002-11-20
更新时间：2002-11-20
严重程度：高
威胁程度：远程拒绝服务
错误类型：边界检查错误
利用方式：服务器模式

BUGTRAQ ID：6212

受影响系统

Cisco PIX Firewall 5.0
   + Cisco PIX Firewall 515
   + Cisco PIX Firewall 520
Cisco PIX Firewall 5.1 (4.206)
Cisco PIX Firewall 5.1
   + Cisco PIX Firewall 515
   + Cisco PIX Firewall 520
Cisco PIX Firewall 5.1.4
Cisco PIX Firewall 5.2 (7)
Cisco PIX Firewall 5.2 (6)
Cisco PIX Firewall 5.2 (5)
Cisco PIX Firewall 5.2 (3.210)
Cisco PIX Firewall 5.2 (2)
Cisco PIX Firewall 5.2
Cisco PIX Firewall 6.0 (2)
Cisco PIX Firewall 6.0 (1)
Cisco PIX Firewall 6.0
   + Cisco PIX Firewall 515
   + Cisco PIX Firewall 520
Cisco PIX Firewall 6.0.3
Cisco PIX Firewall 6.1 (2)
Cisco PIX Firewall 6.1
   + Cisco PIX Firewall 515
   + Cisco PIX Firewall 520
Cisco PIX Firewall 6.1.3
Cisco PIX Firewall 6.2 (1)
Cisco PIX Firewall 6.2
Cisco PIX Firewall 6.2.1

详细描述
Cisco PIX防火墙HTTP RADIUS/TACACS+代理组件处理畸形请求存在缓冲区溢出漏洞。

目前还没有该漏洞的详细技术细节，成功利用该漏洞可能引起拒绝服务攻击，设备必须重启才能恢复。

测试代码
无

解决方案
Cisco PIX Firewall 5.0:
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.1 (4.206):
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.1:
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.1.4:
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.2 (7):
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.2 (6):
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.2 (5):
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.2 (3.210):
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.2 (2):
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 5.2:
Cisco Upgrade PIX Firewall 5.2.9
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.0 (2):
Cisco Upgrade PIX Firewall 6.0.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.0 (1):
Cisco Upgrade PIX Firewall 6.0.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.0:
Cisco Upgrade PIX Firewall 6.0.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.0.3:
Cisco Upgrade PIX Firewall 6.0.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.1 (2):
Cisco Upgrade PIX Firewall 6.1.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.1:
Cisco Upgrade PIX Firewall 6.1.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.1.3:
Cisco Upgrade PIX Firewall 6.1.4
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.2 (1):
Cisco Upgrade PIX Firewall 6.2.2
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.2:
Cisco Upgrade PIX Firewall 6.2.2
http://www.cisco.com/pcgi-bin/tablebuild.pl/pix
Cisco PIX Firewall 6.2.1:

相关信息
参考：http://www.cisco.com/warp/public/707/pix-multiple-vuln-pub.shtml

最近严重漏洞

Cisco PIX TACACS+/RADIUS HTTP代理服务器缓冲区溢出漏洞