CVE-2015-6423
Cisco ASA Software 9.4.1–9.5.1 is affected by CVE-2015-6423, a DCERPC Inspection bypass where the internal ACL incorrectly permits non-DCERPC traffic, enabling remote authenticated users to bypass the DCERPC-only ACL. The issue stems from the DCERPC Inspection feature allowing traffic beyond DCER...