发布日期：2011-02-23
更新日期：2011-02-23

受影响系统：

Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive

不受影响系统：

Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive
Cisco isco ASA 5500 Series Adaptive Security Appliance Cisco ASA 5500 Series Adaptive

描述：

---

BUGTRAQ  ID: 46524
CVE ID: CVE-2011-0395,CVE-2011-0393,CVE-2011-0396

Cisco ASA 5500系列自适应安全设备是用于提供安全和VPN服务的模块化平台，可提供防火墙、IPS、anti-X和VPN服务。

Cisco ASA 5500系列在实现上存在多个漏洞，远程攻击者可利用这些漏洞泄露敏感信息或造成拒绝服务。

Cisco ASA 5500自适应安全设备受多个漏洞影响：

  * 透明服务器报文缓冲区耗尽漏洞
  * SCCP监测拒绝服务漏洞
  * RIP拒绝服务漏洞
  * 未验证文件系统访问漏洞


<*链接：http://www.cisco.com/warp/public/707/cisco-sa-20110223-asa.shtml
*>

建议：

---

厂商补丁：

Cisco
-----
目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：

http://www.cisco.com/warp/public/707/advisory.html

浏览次数：2366
严重程度：0（网友投票）