发布日期：2012-03-14
更新日期：2012-03-15

受影响系统：

Cisco Firewall Services Module 4.x
Cisco Firewall Services Module 3.x
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.x
Cisco isco ASA 5500 Series Adaptive Security Appliance 7.x
Cisco FWSM for Cisco Catalyst 6500/7600 Series 4.1
Cisco FWSM for Cisco Catalyst 6500/7600 Series 4.0
Cisco FWSM for Cisco Catalyst 6500/7600 Series 3.1

不受影响系统：

Cisco Firewall Services Module 4.1(8)
Cisco Firewall Services Module 3.2(23)
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.5(1.2)
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.4(2.5)
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.3(2.25)
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.2(5.8)
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.1(2.53)
Cisco isco ASA 5500 Series Adaptive Security Appliance 8.0(5.27)
Cisco isco ASA 5500 Series Adaptive Security Appliance 7.2(5.7)
Cisco FWSM for Cisco Catalyst 6500/7600 Series 4.1(8)
Cisco FWSM for Cisco Catalyst 6500/7600 Series 3.2(23)

描述：

---

BUGTRAQ  ID: 52481
CVE ID: CVE-2012-0356

PIM是独立于任何IP路由协议的多播路由协议。PIM可利用包括EIGRP、OSPF、BGP或静态路由的单播路由协议以填充单播路由表。

Cisco Catalyst 6500 Series Firewall Services Module (FWSM)在实现上存在PIM拒绝访问漏洞，当启用了多播PIM消息时，可通过发送畸形PIM消息到受影响系统可利用此漏洞导致系统重载。

<*来源：Cisco
  
  链接：http://secunia.com/advisories/48421/
        http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-fwsm
*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（cisco-sa-20120314-fwsm）以及相应补丁:

cisco-sa-20120314-fwsm：Cisco Firewall Services Module Crafted Protocol Independent Multicast

链接：http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-fwsm

浏览次数：2146
严重程度：0（网友投票）