Cisco PIX And ASA Appliances Multiple Remote Vulnerabilities
BID:23768
Info
Cisco PIX And ASA Appliances Multiple Remote Vulnerabilities
| Bugtraq ID: | 23768 |
| Class: | Unknown |
| CVE: |
CVE-2007-2463 CVE-2007-2464 CVE-2007-2462 |
| Remote: | Yes |
| Local: | No |
| Published: | May 02 2007 12:00AM |
| Updated: | Jul 06 2016 02:39PM |
| Credit: | The vendor reported these issues. |
| Vulnerable: |
Cisco PIX/ASA 7.2.2 Cisco PIX/ASA 7.2.(2.7) Cisco PIX/ASA 7.2.(2.16) Cisco PIX/ASA 7.2(2.15) Cisco PIX/ASA 7.2(2.14) Cisco PIX/ASA 7.2(2.10) Cisco PIX/ASA 7.2(1) Cisco PIX/ASA 7.1.(2.48) Cisco PIX/ASA 7.1(2.5) Cisco PIX/ASA 7.1(2) |
| Not Vulnerable: |
Cisco PIX/ASA 7.2.(2.8) Cisco PIX/ASA 7.2.(2.19) Cisco PIX/ASA 7.2.(2.17) Cisco PIX/ASA 7.1.(2.49) |
Discussion
Cisco PIX And ASA Appliances Multiple Remote Vulnerabilities
Cisco Adaptive Security Appliance prone to multiple remote vulnerabilities, including authentication-bypass and denial-of-service issues.
An attacker can exploit these issues to cause denial-of-service conditions and to gain unauthorized access to an affected device.
Cisco Adaptive Security Appliance prone to multiple remote vulnerabilities, including authentication-bypass and denial-of-service issues.
An attacker can exploit these issues to cause denial-of-service conditions and to gain unauthorized access to an affected device.
Exploit / POC
Cisco PIX And ASA Appliances Multiple Remote Vulnerabilities
An attacker can use standard network utilities to exploit these issues.
An attacker can use standard network utilities to exploit these issues.
Solution / Fix
Cisco PIX And ASA Appliances Multiple Remote Vulnerabilities
Solution:
The vendor released updates to address these issues. Please contact the vendor for information on how to obtain and apply these updates.
Solution:
The vendor released updates to address these issues. Please contact the vendor for information on how to obtain and apply these updates.
References
Cisco PIX And ASA Appliances Multiple Remote Vulnerabilities
References:
References:
- Cisco Homepage (Cisco )
- Cisco PIX and ASA authentication bypass vulnerability (US-CERT)
- Cisco Security Advisory: LDAP and VPN Vulnerabilities in PIX and ASA Appliances (Cisco Systems Product Security Incident Response Team
- Cisco Security Advisory: LDAP and VPN Vulnerabilities in PIX and ASA Appliances (Cisco)
- Vulnerability Note VU#337508 Cisco ASA clientless SSL VPN denial of service vuln (US-CERT)