Vulnerability CVE-2007-0960


Published: 2007-02-15   Modified: 2012-02-12

Description:
Unspecified vulnerability in Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when configured to use the LOCAL authentication method, allows remote authenticated users to gain privileges via unspecified vectors.

Type:

CWE-Other

CVSS2 => (AV:N/AC:L/Au:S/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9/10
10/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Cisco -> Asa 5500 
Cisco -> Pix firewall 
Cisco -> Pix firewall software 

 References:
http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml
http://www.securityfocus.com/bid/22561
http://www.securityfocus.com/bid/22562
http://www.securitytracker.com/id?1017651
http://www.securitytracker.com/id?1017652
http://www.vupen.com/english/advisories/2007/0608
https://exchange.xforce.ibmcloud.com/vulnerabilities/32489

Copyright 2024, cxsecurity.com

 

Back to Top