Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)1, 7.1 before 7.1(2)74, 7.2 before 7.2(4)9, and 8.0 before 8.0(4)5 do not properly implement the implicit deny statement, which might allow remote attackers to successfully send packets that bypass intended access restrictions, aka Bug ID CSCsq91277.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:01
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/34607 - | |
References | () http://www.cisco.com/en/US/products/products_security_advisory09186a0080a994f6.shtml - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/34429 - | |
References | () http://www.securitytracker.com/id?1022017 - | |
References | () http://www.vupen.com/english/advisories/2009/0981 - |
Information
Published : 2009-04-09 15:08
Updated : 2024-11-21 01:01
NVD link : CVE-2009-1160
Mitre link : CVE-2009-1160
CVE.ORG link : CVE-2009-1160
JSON object : View
Products Affected
cisco
- pix
- adaptive_security_appliance_5500
CWE
CWE-264
Permissions, Privileges, and Access Controls