Vulnerability CVE-2006-4312


Published: 2006-08-23   Modified: 2012-02-12

Description:
Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to 3.1(1.6), causes the EXEC password, local user passwords, and the enable password to be changed to a "non-random value" under certain circumstances, which causes administrators to be locked out and might allow attackers to gain access.

Type:

CWE-Other

CVSS2 => (AV:L/AC:L/Au:S/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
10/10
3.1/10
Exploit range
Attack complexity
Authentication
Local
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Cisco -> Adaptive security appliance 
Cisco -> Pix firewall 
Cisco -> Pix firewall 501 
Cisco -> Pix firewall 506 
Cisco -> Pix firewall 515 
Cisco -> Pix firewall 515e 
Cisco -> Pix firewall 520 
Cisco -> Pix firewall 525 
Cisco -> Pix firewall 535 
Cisco -> Pix firewall software 

 References:
http://securitytracker.com/id?1016738
http://securitytracker.com/id?1016739
http://securitytracker.com/id?1016740
http://www.cisco.com/warp/public/707/cisco-sa-20060823-firewall.shtml
http://www.securityfocus.com/bid/19681
http://www.vupen.com/english/advisories/2006/3367
https://exchange.xforce.ibmcloud.com/vulnerabilities/28540

Copyright 2024, cxsecurity.com

 

Back to Top