Cisco has warned of a vulnerability in its IOS Firewall Authentication Proxy which might be used by hackers to launch denial of service attacks against vulnerable systems. The vulnerability stems from a software bug in processing user authentication credentials which might be exploited to cause a buffer overflow.

Successful attacks can cause an affected device to reload and might even allow arbitrary code execution provided a vulnerable Authentication Proxy is configured to handle either FTP or Telnet Sessions. Devices that do not support, or are not configured for Firewall Authentication Proxy for either FTP or Telnet Services are not affected.

more details from [url=http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtml]Cisco[/url]

---

Filed under: Security - @ September 8, 2005 10:09 pm