CVE-2012-0335

Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 through 8.4 do not properly perform proxy authentication during attempts to cut through a firewall, which allows remote attackers to obtain sensitive information via a connection attempt, aka Bug ID CSCtx42746.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
VendorProductVersion
ciscoadaptive_security_appliance_software
7.2
ciscoadaptive_security_appliance_software
7.2\(1\)
ciscoadaptive_security_appliance_software
7.2\(1.22\)
ciscoadaptive_security_appliance_software
7.2\(2\)
ciscoadaptive_security_appliance_software
7.2\(2.5\)
ciscoadaptive_security_appliance_software
7.2\(2.7\)
ciscoadaptive_security_appliance_software
7.2\(2.8\)
ciscoadaptive_security_appliance_software
7.2\(2.10\)
ciscoadaptive_security_appliance_software
7.2\(2.14\)
ciscoadaptive_security_appliance_software
7.2\(2.15\)
ciscoadaptive_security_appliance_software
7.2\(2.16\)
ciscoadaptive_security_appliance_software
7.2\(2.17\)
ciscoadaptive_security_appliance_software
7.2\(2.18\)
ciscoadaptive_security_appliance_software
7.2\(2.19\)
ciscoadaptive_security_appliance_software
7.2\(2.48\)
ciscoadaptive_security_appliance_software
7.2\(3\)
ciscoadaptive_security_appliance_software
7.2\(4\)
ciscoadaptive_security_appliance_software
7.2\(5\)
ciscoadaptive_security_appliance_software
7.2.1
ciscoadaptive_security_appliance_software
7.2.2
ciscoadaptive_security_appliance_software
7.2.3
ciscoadaptive_security_appliance_software
7.2.4
ciscoadaptive_security_appliance_software
7.2.5
ciscoadaptive_security_appliance_software
8.2\(1\)
ciscoadaptive_security_appliance_software
8.2\(2\)
ciscoadaptive_security_appliance_software
8.2\(3\)
ciscoadaptive_security_appliance_software
8.2\(3.9\)
ciscoadaptive_security_appliance_software
8.2\(4\)
ciscoadaptive_security_appliance_software
8.2\(4.1\)
ciscoadaptive_security_appliance_software
8.2\(4.4\)
ciscoadaptive_security_appliance_software
8.2\(5\)
ciscoadaptive_security_appliance_software
8.2.1
ciscoadaptive_security_appliance_software
8.2.2
ciscoadaptive_security_appliance_software
8.2.2:interim
ciscoadaptive_security_appliance_software
8.2.3
ciscoadaptive_security_appliance_software
8.3\(1\)
ciscoadaptive_security_appliance_software
8.3\(2\)
ciscoadaptive_security_appliance_software
8.3.1
ciscoadaptive_security_appliance_software
8.3.1:interim
ciscoadaptive_security_appliance_software
8.3.2
ciscoadaptive_security_appliance_software
8.4
ciscoadaptive_security_appliance_software
8.4\(1\)
ciscoadaptive_security_appliance_software
8.4\(1.11\)
ciscoadaptive_security_appliance_software
8.4\(2\)
ciscoadaptive_security_appliance_software
8.4\(2.11\)
cisco5500_series_adaptive_security_appliance
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/49139
http://www.cisco.com/web/software/280775065/89203/ASA-843-Interim-Release-Notes.html
http://www.securityfocus.com/bid/53558
http://www.securitytracker.com/id?1027008
http://secunia.com/advisories/49139
http://www.cisco.com/web/software/280775065/89203/ASA-843-Interim-Release-Notes.html
http://www.securityfocus.com/bid/53558
http://www.securitytracker.com/id?1027008