Details of VAR-201304-0257

ID

VAR-201304-0257

CVE

CVE-2013-1194

TITLE

Cisco ASA Device ISAKMP Enumerated group vulnerability in the implementation of

Trust: 0.8

sources: JVNDB: JVNDB-2013-002415

DESCRIPTION

The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different responses for IKE aggressive-mode messages depending on whether invalid VPN groups are specified, which allows remote attackers to enumerate groups via a series of messages, aka Bug ID CSCue73708. Vendors have confirmed this vulnerability Bug ID CSCue73708 It is released as.A third party may enumerate groups through a series of messages. Cisco Adaptive Security Appliance is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain remote access VPN groups configured in a Cisco ASA device; information obtained may aid in further attacks. This issue is tracked by Cisco BugId CSCue73708

Trust: 1.98

sources: NVD: CVE-2013-1194 // JVNDB: JVNDB-2013-002415 // BID: 59295 // VULHUB: VHN-61196

AFFECTED PRODUCTS

vendor:	cisco	model:	adaptive security appliance software	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	adaptive security appliance	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	adaptive security appliance	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	adaptive security appliance software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	adaptive security appliance	scope:	eq	version:	9.1(1)	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance	scope:	eq	version:	8.4(5)	Trust: 0.3
vendor:	cisco	model:	adaptive security appliance	scope:	eq	version:	8.4(2)	Trust: 0.3

sources: BID: 59295 // JVNDB: JVNDB-2013-002415 // CNNVD: CNNVD-201304-420 // NVD: CVE-2013-1194

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-1194
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2013-1194
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201304-420
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-61196
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2013-1194
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-61196
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-61196 // JVNDB: JVNDB-2013-002415 // CNNVD: CNNVD-201304-420 // NVD: CVE-2013-1194

PROBLEMTYPE DATA

problemtype:

CWE-200

Trust: 1.9

sources: VULHUB: VHN-61196 // JVNDB: JVNDB-2013-002415 // NVD: CVE-2013-1194

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201304-420

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201304-420

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-002415

PATCH

title:	Cisco ASA Software VPN Group Enumeration Vulnerability	url:	http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1194	Trust: 0.8
title:	29025	url:	http://tools.cisco.com/security/center/viewAlert.x?alertId=29025	Trust: 0.8

sources: JVNDB: JVNDB-2013-002415

EXTERNAL IDS

db:	NVD	id:	CVE-2013-1194	Trust: 2.8
db:	JVNDB	id:	JVNDB-2013-002415	Trust: 0.8
db:	CNNVD	id:	CNNVD-201304-420	Trust: 0.7
db:	CISCO	id:	20130417 CISCO ASA SOFTWARE VPN GROUP ENUMERATION VULNERABILITY	Trust: 0.6
db:	BID	id:	59295	Trust: 0.4
db:	PACKETSTORM	id:	121354	Trust: 0.1
db:	VULHUB	id:	VHN-61196	Trust: 0.1

sources: VULHUB: VHN-61196 // BID: 59295 // JVNDB: JVNDB-2013-002415 // CNNVD: CNNVD-201304-420 // NVD: CVE-2013-1194

REFERENCES

url:	http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-1194	Trust: 2.0
url:	http://archives.neohapsis.com/archives/bugtraq/2013-04/0198.html	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1194	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1194	Trust: 0.8
url:	http://www.cisco.com/en/us/products/ps6120/index.html	Trust: 0.3
url:	https://www.trustwave.com/spiderlabs/advisories/twsl2013-004.txt	Trust: 0.3

sources: VULHUB: VHN-61196 // BID: 59295 // JVNDB: JVNDB-2013-002415 // CNNVD: CNNVD-201304-420 // NVD: CVE-2013-1194

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 59295

SOURCES

db:	VULHUB	id:	VHN-61196
db:	BID	id:	59295
db:	JVNDB	id:	JVNDB-2013-002415
db:	CNNVD	id:	CNNVD-201304-420
db:	NVD	id:	CVE-2013-1194

LAST UPDATE DATE

2024-11-23T23:12:49.635000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-61196	date:	2016-09-22T00:00:00
db:	BID	id:	59295	date:	2013-04-17T00:00:00
db:	JVNDB	id:	JVNDB-2013-002415	date:	2013-04-22T00:00:00
db:	CNNVD	id:	CNNVD-201304-420	date:	2013-04-19T00:00:00
db:	NVD	id:	CVE-2013-1194	date:	2024-11-21T01:49:05.457

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-61196	date:	2013-04-18T00:00:00
db:	BID	id:	59295	date:	2013-04-17T00:00:00
db:	JVNDB	id:	JVNDB-2013-002415	date:	2013-04-22T00:00:00
db:	CNNVD	id:	CNNVD-201304-420	date:	2013-04-19T00:00:00
db:	NVD	id:	CVE-2013-1194	date:	2013-04-18T18:55:06.937