Sign-up

ID

VAR-E-200904-0363


CVE

cve_id:CVE-2009-4914

Trust: 0.3

cve_id:CVE-2009-4912

Trust: 0.3

cve_id:CVE-2009-4910

Trust: 0.3

cve_id:CVE-2009-4915

Trust: 0.3

cve_id:CVE-2009-4916

Trust: 0.3

cve_id:CVE-2009-4913

Trust: 0.3

cve_id:CVE-2009-4920

Trust: 0.3

cve_id:CVE-2009-4921

Trust: 0.3

cve_id:CVE-2009-4911

Trust: 0.3

cve_id:CVE-2009-4918

Trust: 0.3

cve_id:CVE-2009-4923

Trust: 0.3

cve_id:CVE-2009-4919

Trust: 0.3

cve_id:CVE-2009-4922

Trust: 0.3

cve_id:CVE-2009-4917

Trust: 0.3

sources: BID: 41412

TITLE

Cisco Adaptive Security Appliances (ASA) 5580 Series Multiple Security Vulnerabilities

Trust: 0.3

sources: BID: 41412

DESCRIPTION

Cisco ASA 5580 series security appliances are prone to multiple security vulnerabilities. The vulnerabilities include multiple denial-of-service vulnerabilities, multiple buffer-overflow vulnerabilities, authentication-bypass vulnerabilities and a cross-site scripting vulnerability.
Exploiting these issues could allow an attacker to deny service to legitimate users, bypass security restrictions and gain unauthorized access, execute arbitrary script code, or steal cookie-based authentication credentials. Other attacks may also be possible.
Cisco ASA 5580 series security appliances with software prior to 8.1(2) are vulnerable.

Trust: 0.3

sources: BID: 41412

AFFECTED PRODUCTS

vendor:ciscomodel:asa series adaptive security appliancescope:eqversion:55808.1(1)

Trust: 0.3

vendor:ciscomodel:asa series adaptive security appliancescope:eqversion:55808.1

Trust: 0.3

vendor:ciscomodel:asa series adaptive security appliancescope:neversion:55808.1(2)

Trust: 0.3

sources: BID: 41412

EXPLOIT

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Some of these issues may be trivial to exploit and will not require specific exploit code.

Trust: 0.3

sources: BID: 41412

PRICE

Free

Trust: 0.3

sources: BID: 41412

TYPE

Unknown

Trust: 0.3

sources: BID: 41412

CREDITS

Cisco

Trust: 0.3

sources: BID: 41412

EXTERNAL IDS

db:NVDid:CVE-2009-4914

Trust: 0.3

db:NVDid:CVE-2009-4912

Trust: 0.3

db:NVDid:CVE-2009-4910

Trust: 0.3

db:NVDid:CVE-2009-4915

Trust: 0.3

db:NVDid:CVE-2009-4916

Trust: 0.3

db:NVDid:CVE-2009-4913

Trust: 0.3

db:NVDid:CVE-2009-4920

Trust: 0.3

db:NVDid:CVE-2009-4921

Trust: 0.3

db:NVDid:CVE-2009-4911

Trust: 0.3

db:NVDid:CVE-2009-4918

Trust: 0.3

db:NVDid:CVE-2009-4923

Trust: 0.3

db:NVDid:CVE-2009-4919

Trust: 0.3

db:NVDid:CVE-2009-4922

Trust: 0.3

db:NVDid:CVE-2009-4917

Trust: 0.3

db:BIDid:41412

Trust: 0.3

sources: BID: 41412

REFERENCES

url:http://www.cisco.com/en/us/docs/security/asa/asa81/release/notes/asarn812.html

Trust: 0.3

url:http://www.cisco.com/

Trust: 0.3

sources: BID: 41412

SOURCES

db:BIDid:41412

LAST UPDATE DATE

2022-07-27T09:45:59.104000+00:00


SOURCES UPDATE DATE

db:BIDid:41412date:2009-04-06T00:00:00

SOURCES RELEASE DATE

db:BIDid:41412date:2009-04-06T00:00:00