The failover ipsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(6), 9.2 before 9.2(3.3), and 9.3 before 9.3(3) does not properly validate failover communication messages, which allows remote attackers to reconfigure an ASA device, and consequently obtain administrative control, by sending crafted UDP packets over the local network to the failover interface, aka Bug ID CSCur21069.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2015-04-13T01:00:00
Updated: 2024-08-06T04:17:32.577Z
Reserved: 2015-01-07T00:00:00
Link: CVE-2015-0675
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2015-04-13T01:59:00.063
Modified: 2022-05-26T15:11:51.237
Link: CVE-2015-0675
Redhat
No data.