Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers.Cisco ASA 5500-X Series Next-Generation Firewalls.Cisco ASA 5500 Series Adaptive Security Appliances.
Mac ipsecuritas cisco asa no xauth software#
This vulnerability affects Cisco ASA Software running on the following products: This advisory is available at the following link: There are no workarounds that address this vulnerability. A valid IKEv1 Phase 1 needs to be established to exploit this vulnerability, which means that an attacker would need to have knowledge of a pre-shared key or have a valid certificate for phase 1 authentication.Ĭisco has released software updates that address this vulnerability. This vulnerability can be triggered by IPv4 or Systems configured in routed firewall mode and in single or
Note: Only traffic directed to the affected system canīe used to exploit this vulnerability. An attackerĬould exploit this vulnerability by sending crafted parameters. The IKEv1 XAUTH parameters passed during an IKEv1 negotiation. The vulnerability is due to insufficient validation of A vulnerability in the Internet Key Exchange Version 1 (IKEv1) XAUTH code of Cisco ASA Software could allowĪn authenticated, remote attacker to cause a reload of an affected
0 kommentar(er)
