Cisco ASA NTLMv1 Authentication Error Lets Remote Users Bypass Authentication
|
|
SecurityTracker Alert ID: 1023608 |
|
SecurityTracker URL: http://securitytracker.com/id?1023608
|
|
CVE Reference:
CVE-2010-0568
(Links to External Site)
|
Date: Feb 17 2010
|
Impact:
User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 5500 Series; 7.0, 7.2, 8.0, 8.1, 8.2
|
Description:
A vulnerability was reported in Cisco ASA. A remote user can bypass authentication.
A remote user can supply a specially crafted username during an authentication request to bypass authentication and gain access to the target device. Devices configured to authenticate users against Microsoft Windows servers using the NTLMv1 protocol are affected.
Cisco has assigned Cisco bug ID CSCte21953 to this vulnerability.
|
Impact:
A remote user can bypass authentication and gain access to the target device.
|
Solution:
The vendor has issued a fix (7.0(8.10), 7.2(4.45), 8.0(5.7), 8.1(2.40), 8.2(2.1)).
The vendor's advisory is available at:
http://www.cisco.com/warp/public/707/cisco-sa-20100217-asa.shtml
|
Vendor URL: www.cisco.com/warp/public/707/cisco-sa-20100217-asa.shtml (Links to External Site)
|
Cause:
Authentication error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 17 Feb 2010 17:06:49 +0000
Subject: Cisco ASA
|
http://www.cisco.com/warp/public/707/cisco-sa-20100217-asa.shtml
CVE-2010-0568
|
|
