In response to a May 2, 2007 CERT/CC advisory, Cisco confirmed this morning that a vulnerability does exist in their ASA and PIX security appliances running software version 7.2. This vulnerability affects systems configured with multiple DHCP servers (via the dhcprelay server command) and can lead to memory exhaustion and denial of service. Appliances configured with only one DHCP server are not affected.
In addition, Cisco announced fixed software that addresses two LDAP authentication bypass, as well as, two VPN denial of service vulnerabilities. These vulnerabilities only affect appliances using LDAP authentication or terminating VPN connections. Cisco has made software available to address these vulnerabilities.
Further details can be found on Cisco’s website.
- Cisco Security Response: DHCP Relay Agent Vulnerability in Cisco PIX and ASA Appliances
- Cisco Security Advisory: LDAP and VPN Vulnerabilities in PIX and ASA Appliances
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!