中危 多款Cisco产品Snort HTTP Detection Engine文件策略绕过漏洞(CVE-2021-1236)
CVE编号
CVE-2021-1236利用情况
暂无补丁情况
官方补丁披露时间
2021-01-14漏洞描述
Cisco 3000 Series Industrial Security Appliances是3000系列工业防火墙。Cisco 4000 Series Integrated Services Routers(ISRS)是4000系列企业级多业务路由器。Cisco Cloud Services Router 1000V Series是一款1000v系列云服务路由软件。 Cisco多款产品的Snort应用程序检测引擎存在文件策略绕过漏洞。该漏洞源于检测算法错误。未经身份认证的远程攻击者可通过向受影响设备发送特制数据包利用该漏洞绕过HTTP数据包的已配置文件策略。 受影响系统: Cisco Firepower Threat Defense Software Cisco 3000 Series Industrial Security Appliances (ISAs) Cisco 1000 Series Integrated Services Routers Cisco Cloud Services Router 1000V Series Cisco 4000 Series Integrated Services Routers Cisco Integrated Services Virtual Routers解决建议
Cisco已经为此发布了一个安全公告(cisco-sa-snort-app-bypass-cSBYCATq)以及相应补丁:链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATq
参考链接 |
|
|---|---|
| https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html | |
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-s... | |
| https://www.debian.org/security/2023/dsa-5354 |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 应用 | cisco | firepower_management_center | 2.9.14.0 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | cisco | firepower_management_center | 2.9.14.14 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | cisco | firepower_management_center | 2.9.15 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | cisco | firepower_management_center | 2.9.16 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | cisco | firepower_management_center | 2.9.17 | - | |||||
| 运行在以下环境 | |||||||||
| 应用 | cisco | firepower_threat_defense | * | Up to (excluding) 6.5.0.5 | |||||
| 运行在以下环境 | |||||||||
| 应用 | snort | snort | * | Up to (excluding) 2.9.14 | |||||
| 运行在以下环境 | |||||||||
| 系统 | cisco | ios_xe | * | Up to (excluding) 17.4.1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_10 | snort | * | Up to (excluding) 2.9.20-0+deb10u1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_11 | snort | * | Up to (excluding) 2.9.20-0+deb11u1 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_9 | snort | * | Up to (including) 2.9.7.0-5 | |||||
| 运行在以下环境 | |||||||||
| 系统 | debian_sid | snort | * | Up to (excluding) 2.9.15.1-1 | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | csr_1000v | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isa_3000 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_1100-4p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_1100-8p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_1101-4p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_1109-2p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_1109-4p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_1111x-8p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4221 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4321 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4331 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4351 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4431 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4451-x | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | cisco | isr_4461 | - | - | |||||
- 攻击路径 远程
- 攻击复杂度 复杂
- 权限要求 无需权限
- 影响范围 全局影响
- EXP成熟度 未验证
- 补丁情况 官方补丁
- 数据保密性 数据泄露
- 数据完整性 无影响
- 服务器危害 无影响
- 全网数量 N/A
| CWE-ID | 漏洞类型 |
| CWE-670 | 控制流实现总是不正确 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论