Cisco ASA and PIX Security Appliances Multiple Vulnerabilities

Some vulnerabilities have been reported in Cisco ASA and PIX appliances, which can be exploited by malicious people to disclose sensitive information, and by malicious users and malicious people to cause a DoS (Denial of Service).

Summary

Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances that may result in a reload of the device or disclosure of confidential information. This security advisory outlines details of the following vulnerabilities:

  • Erroneous SIP Processing Vulnerabilities
  • IPSec Client Authentication Processing Vulnerability
  • SSL VPN Memory Leak Vulnerability
  • URI Processing Error Vulnerability in SSL VPNs
  • Potential Information Disclosure in Clientless VPNs

Note: These vulnerabilities are independent of each other. A device may be affected by one vulnerability and not affected by another. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate some of these vulnerabilities are available.

References: http://tools.cisco.com/…/cisco-sa-20080903-asa

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.