CVE-2007-0962

Name of the Vulnerable Software and Affected Versions: Cisco PIX 500 and ASA 5500 Series Security Appliances versions 7.0 through 7.0(4.13) and versions 7.1 through 7.1(2.0) FWSM versions 2.x through 2.3(4.11) and versions 3.x through 3.1(3.23)

Description: The issue allows remote attackers to cause a denial of service, resulting in a device reboot, via malformed HTTP traffic when inspect http is enabled. This could be exploited by an unauthenticated, remote attacker to cause a denial of service condition.

Recommendations: For Cisco PIX 500 and ASA 5500 Series Security Appliances versions 7.0 through 7.0(4.13), update to version 7.0(4.14) or later. For Cisco PIX 500 and ASA 5500 Series Security Appliances versions 7.1 through 7.1(2.0), update to version 7.1(2.1) or later. For FWSM versions 2.x through 2.3(4.11), update to version 2.3(4.12) or later. For FWSM versions 3.x through 3.1(3.23), update to version 3.1(3.24) or later. As a temporary workaround, consider disabling the inspect http feature until a patch is available.