CVE-2014-3410

2014-12-20T00:59:00
ID CVE-2014-3410
Type cve
Reporter cve@mitre.org
Modified 2014-12-22T15:54:00

Description

The syslog-management subsystem in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to obtain an administrator password by waiting for an administrator to copy a file, and then (1) sniffing the network for a syslog message or (2) reading a syslog message in a file on a syslog server, aka Bug IDs CSCuq22357 and CSCur41860.