Solved: Re: DoS on cisco PIX 500 series and ASA 5500 series

marie-pongou · ‎01-28-2008

Hello,

I fund a www-site http://www.searchsecurity.de/themenkanaele/plattformsicherheit/schwachstellenmanagement/allgemein/articles/106752/ (only German). I read that it is possible to do a DoS on cisco PIX 500 series and series 5500 ASA, when the TTL is enable.

How I can check that? or resolve the Problem?

thank,

Marie

ajagadee · ‎01-28-2008

What version of code are you running the Pix or ASA. Refer the "Affected Products" section for details on the affected products and versions. This should point you in the right direction.

Also, listed in the URL is Workarounds and Fixed Versions that you may want to check.

Regards,

Arul

View solution in original post

ajagadee · ‎01-28-2008

Yes, if you run the command "ASA#show running-config | include decrement-ttl" and do not see TTL Enabled, then you are not affected.

Regards,

Arul

View solution in original post

marie-pongou · ‎01-28-2008

http://www.cisco.com/en/US/products/products_security_advisory09186a008093942e.shtml#@ID

ajagadee · ‎01-28-2008

What version of code are you running the Pix or ASA. Refer the "Affected Products" section for details on the affected products and versions. This should point you in the right direction.

Also, listed in the URL is Workarounds and Fixed Versions that you may want to check.

Regards,

Arul

marie-pongou · ‎01-28-2008

I have a PIX 515 version 7.22 and ASA 5520 version 7.22.

I see that the decrement-ttl is not enable. It is Ok.

Best Regards

Marie

ajagadee · ‎01-28-2008

Yes, if you run the command "ASA#show running-config | include decrement-ttl" and do not see TTL Enabled, then you are not affected.

Regards,

Arul