Boletines de Vulnerabilidades

Multiple Vulnerabilities in Cisco ASA Software

Información sobre el sistema
   
Software afectado Cisco

Descripción
Cisco Adaptive Security Appliance (ASA) Software is affected by the following vulnerabilities: Cisco ASA Failover Command Injection Vulnerability Cisco ASA DNS Memory Exhaustion Vulnerability Cisco ASA VPN XML Parser Denial of Service Vulnerability Successful exploitation of the Cisco ASA Failover Command Injection Vulnerability wouldallow an attacker to submit failover commands to the failover units, which may result in an attacker taking full control of the systems.Successful exploitation of

More info:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-asa?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Multiple%20Vulnerabilities%20in%20Cisco%20ASA%20Software&vs_k=1

Identificadores estándar
Propiedad Valor
CVE CVE-2015-0675 ,CVE-2015-0676 and CVE-2015-0677.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-04-09

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT