Details of VAR-E-200902-0505

ID

VAR-E-200902-0505

CVE

cve_id:	CVE-2009-0621	Trust: 0.3
cve_id:	CVE-2009-0620	Trust: 0.3
cve_id:	CVE-2009-0625	Trust: 0.3
cve_id:	CVE-2009-0624	Trust: 0.3
cve_id:	CVE-2009-0623	Trust: 0.3
cve_id:	CVE-2009-0622	Trust: 0.3

sources: BID: 33900

TITLE

Multiple Cisco ACE Products Multiple Remote Vulnerabilities

Trust: 0.3

sources: BID: 33900

DESCRIPTION

Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine are prone to multiple remote vulnerabilities:
- Multiple authentication-bypass issues
- A remote privilege-escalation issue
- Multiple denial-of-service issues
Attackers can exploit these issues to execute arbitrary commands, gain administrative access, and cause denial-of-service conditions. Other attacks are also possible.

Trust: 0.3

sources: BID: 33900

AFFECTED PRODUCTS

vendor:	cisco	model:	ace module a2	scope:	ne	version:	-	Trust: 0.9
vendor:	cisco	model:	ace appliance a1	scope:	ne	version:	4710	Trust: 0.6
vendor:	cisco	model:	application control engine module	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ace module	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ace appliance	scope:	eq	version:	47100	Trust: 0.3
vendor:	cisco	model:	ace appliance a3	scope:	ne	version:	4710	Trust: 0.3

sources: BID: 33900

EXPLOIT

An attacker can exploit these issues by using standard network utilities.

Trust: 0.3

sources: BID: 33900

PRICE

Free

Trust: 0.3

sources: BID: 33900

TYPE

Unknown

Trust: 0.3

sources: BID: 33900

CREDITS

Reported by the vendor

Trust: 0.3

sources: BID: 33900

EXTERNAL IDS

db:	NVD	id:	CVE-2009-0621	Trust: 0.3
db:	NVD	id:	CVE-2009-0620	Trust: 0.3
db:	NVD	id:	CVE-2009-0625	Trust: 0.3
db:	NVD	id:	CVE-2009-0624	Trust: 0.3
db:	NVD	id:	CVE-2009-0623	Trust: 0.3
db:	NVD	id:	CVE-2009-0622	Trust: 0.3
db:	BID	id:	33900	Trust: 0.3

sources: BID: 33900

REFERENCES

url:	http://www.cisco.com/en/us/products/products_applied_mitigation_bulletin09186a0080a7bd0a.ht	Trust: 0.3
url:	http://www.cisco.com/en/us/products/products_security_advisory09186a0080a7bc82.shtml	Trust: 0.3
url:	http://www.cisco.com	Trust: 0.3

sources: BID: 33900

SOURCES

db:

BID

id:

33900

LAST UPDATE DATE

2022-07-27T09:52:53.142000+00:00

SOURCES UPDATE DATE

db:

BID

id:

33900

date:

2009-03-09T22:26:00

SOURCES RELEASE DATE

db:

BID

id:

33900

date:

2009-02-25T00:00:00