Lucene search

CiscoCISCO-SA-20140409-CVE-2014-2128

HistoryApr 09, 2014 - 4:22 p.m.

Cisco Adaptive Security Appliance SSL VPN Authentication Bypass Vulnerability

2014-04-0916:22:04

tools.cisco.com

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

64.4%

JSON

A vulnerability in the SSL VPN code could allow an unauthenticated, remote attacker to access
the SSL VPN portal web page.

The
vulnerability is due to improper handling of authentication cookies
when the Cisco ASA SSL VPN feature is enabled. An
attacker could exploit this vulnerability by manually modifying the HTTP
POST body with a forged cookie value or entering a crafted URL. An
exploit could allow the attacker to gain unauthenticated access to the SSL VPN Portal page. Depending on the SSL VPN configuration, the attacker may also start a VPN tunnel by using Cisco AnyConnect.

In all cases, the attacker may gain unauthorized access to internal network resources.

Cisco has confirmed the vulnerability in a security advisory and released software updates.

To exploit the vulnerability, the attacker may provide a link that directs a user to a malicious site and use misleading language or instructions to persuade the user to follow the provided link.

The SSL VPN feature must be enabled on a targeted device to exploit this vulnerability. Successful exploitation could allow the attacker to start a VPN tunnel via the AnyConnect client or by using SSL VPN cookies during the creation of an SSL VPN session. Both scenarios could allow unauthorized access to network resources that could be used to conduct further attacks.

Affected configurations

Vulners

Node

ciscoadaptive_security_appliance_softwareMatch8.2

ciscoadaptive_security_appliance_softwareMatch8.3

ciscoadaptive_security_appliance_softwareMatch8.4

ciscoadaptive_security_appliance_softwareMatch8.6

ciscoadaptive_security_appliance_softwareMatch9.0

ciscoadaptive_security_appliance_softwareMatch9.1

ciscoadaptive_security_appliance_softwareMatch8.2.0.45

ciscoadaptive_security_appliance_softwareMatch8.2.1

ciscoadaptive_security_appliance_softwareMatch8.2.2

ciscoadaptive_security_appliance_softwareMatch8.2.2.10

ciscoadaptive_security_appliance_softwareMatch8.2.3

ciscoadaptive_security_appliance_softwareMatch8.2.4

ciscoadaptive_security_appliance_softwareMatch8.2.1.11

ciscoadaptive_security_appliance_softwareMatch8.2.2.9

ciscoadaptive_security_appliance_softwareMatch8.2.2.12

ciscoadaptive_security_appliance_softwareMatch8.2.2.16

ciscoadaptive_security_appliance_softwareMatch8.2.4.1

ciscoadaptive_security_appliance_softwareMatch8.2.4.4

ciscoadaptive_security_appliance_softwareMatch8.2.5

ciscoadaptive_security_appliance_softwareMatch8.2.5.13

ciscoadaptive_security_appliance_softwareMatch8.2.5.22

ciscoadaptive_security_appliance_softwareMatch8.2.5.26

ciscoadaptive_security_appliance_softwareMatch8.2.2.17

ciscoadaptive_security_appliance_softwareMatch8.2.5.33

ciscoadaptive_security_appliance_softwareMatch8.2.5.40

ciscoadaptive_security_appliance_softwareMatch8.2.5.41

ciscoadaptive_security_appliance_softwareMatch8.2.5.46

ciscoadaptive_security_appliance_softwareMatch8.3.1.1

ciscoadaptive_security_appliance_softwareMatch8.3.1

ciscoadaptive_security_appliance_softwareMatch8.3.2

ciscoadaptive_security_appliance_softwareMatch8.3.2.23

ciscoadaptive_security_appliance_softwareMatch8.3.2.25

ciscoadaptive_security_appliance_softwareMatch8.3.1.4

ciscoadaptive_security_appliance_softwareMatch8.3.1.6

ciscoadaptive_security_appliance_softwareMatch8.3.2.4

ciscoadaptive_security_appliance_softwareMatch8.3.2.13

ciscoadaptive_security_appliance_softwareMatch8.3.2.31

ciscoadaptive_security_appliance_softwareMatch8.3.2.33

ciscoadaptive_security_appliance_softwareMatch8.3.2.34

ciscoadaptive_security_appliance_softwareMatch8.3.2.37

ciscoadaptive_security_appliance_softwareMatch8.3.2.39

ciscoadaptive_security_appliance_softwareMatch8.4.1

ciscoadaptive_security_appliance_softwareMatch8.4.2

ciscoadaptive_security_appliance_softwareMatch8.4.1.3

ciscoadaptive_security_appliance_softwareMatch8.4.1.11

ciscoadaptive_security_appliance_softwareMatch8.4.2.8

ciscoadaptive_security_appliance_softwareMatch8.4.3

ciscoadaptive_security_appliance_softwareMatch8.4.3.8

ciscoadaptive_security_appliance_softwareMatch8.4.3.9

ciscoadaptive_security_appliance_softwareMatch8.4.4

ciscoadaptive_security_appliance_softwareMatch8.4.4.1

ciscoadaptive_security_appliance_softwareMatch8.4.4.3

ciscoadaptive_security_appliance_softwareMatch8.4.4.5

ciscoadaptive_security_appliance_softwareMatch8.4.4.9

ciscoadaptive_security_appliance_softwareMatch8.4.5

ciscoadaptive_security_appliance_softwareMatch8.4.5.6

ciscoadaptive_security_appliance_softwareMatch8.4.6

ciscoadaptive_security_appliance_softwareMatch8.4.2.1

ciscoadaptive_security_appliance_softwareMatch8.4.7

ciscoadaptive_security_appliance_softwareMatch8.6.1.1

ciscoadaptive_security_appliance_softwareMatch8.6.1

ciscoadaptive_security_appliance_softwareMatch8.6.1.2

ciscoadaptive_security_appliance_softwareMatch8.6.1.5

ciscoadaptive_security_appliance_softwareMatch8.6.1.10

ciscoadaptive_security_appliance_softwareMatch8.6.1.12

ciscoadaptive_security_appliance_softwareMatch9.0.1

ciscoadaptive_security_appliance_softwareMatch9.0.2

ciscoadaptive_security_appliance_softwareMatch9.0.2.10

ciscoadaptive_security_appliance_softwareMatch9.0.3

ciscoadaptive_security_appliance_softwareMatch9.0.3.6

ciscoadaptive_security_appliance_softwareMatch9.1.1

ciscoadaptive_security_appliance_softwareMatch9.1.1.4

ciscoadaptive_security_appliance_softwareMatch9.1.2

ciscoadaptive_security_appliance_softwareMatch9.1.3

ciscoadaptive_security_appliance_softwareMatch9.1.2.8

CPENameOperatorVersion
cisco adaptive security appliance (asa) softwareeq8.2
cisco adaptive security appliance (asa) softwareeq8.3
cisco adaptive security appliance (asa) softwareeq8.4
cisco adaptive security appliance (asa) softwareeq8.6
cisco adaptive security appliance (asa) softwareeq9.0
cisco adaptive security appliance (asa) softwareeq9.1
cisco adaptive security appliance (asa) softwareeq8.2.0.45
cisco adaptive security appliance (asa) softwareeq8.2.1
cisco adaptive security appliance (asa) softwareeq8.2.2
cisco adaptive security appliance (asa) softwareeq8.2.2.10

Name	Operator	Version
cisco adaptive security appliance (asa) software	eq	8.2
cisco adaptive security appliance (asa) software	eq	8.3
cisco adaptive security appliance (asa) software	eq	8.4
cisco adaptive security appliance (asa) software	eq	8.6
cisco adaptive security appliance (asa) software	eq	9.0
cisco adaptive security appliance (asa) software	eq	9.1
cisco adaptive security appliance (asa) software	eq	8.2.0.45
cisco adaptive security appliance (asa) software	eq	8.2.1
cisco adaptive security appliance (asa) software	eq	8.2.2
cisco adaptive security appliance (asa) software	eq	8.2.2.10