3 matches found
Cisco Adaptive Security Appliance TFTP配置请求竞争条件漏洞
CVE ID:CVE-2014-0739 Cisco Adaptive Security Appliance是一款自适应安全设备,可提供安全和VPN服务的模块。 Cisco Adaptive Security Appliance处理配置电话代理连接数据库的TFTP请求存在竞争条件错误,允许攻击者利用漏洞操作部分配置数据。 0 Cisco Adaptive Security Appliance ASA 9.13 Cisco ASA 5500-X Series Adaptive Security Appliances 目前没有详细解决方案提供:...
CVE-2014-0739
Race condition in the Phone Proxy component in Cisco Adaptive Security Appliance ASA Software 9.1.3 and earlier allows remote attackers to bypass secdb authentication and provide certain pass-through services to untrusted devices via a crafted configuration-file TFTP request, aka Bug ID CSCuj6676...
CVE-2014-0739
CVE-2014-0739 : Cisco ASA’s Phone Proxy contains a race condition in the TFTP configuration-file handling that can allow an unauthenticated, remote attacker to bypass sec_db authentication and pass traffic from untrusted phones through the ASA. Affected: ASA Software 9.1.3 and earlier. Impact sta...