Local Authentication Vulnerability in Cisco PIX and ASA Security Appliances
CVE-2007-0960

Currently unrated

Key Information:

Vendor: Cisco
Status: Asa 5500; Pix Firewall Software
Vendor: CVE Published:; 16 February 2007

Summary

A vulnerability exists in Cisco's PIX 500 and ASA 5500 Series Security Appliances, specifically impacting version 7.2.2 when configured to use LOCAL authentication. This flaw allows remote authenticated users to exploit unspecified vectors and potentially gain elevated privileges within the network environment. The exploitation of this vulnerability poses significant risks by compromising the confidentiality and integrity of the network.

References

http://www.vupen.com/english/advisories/2007/0608

vdb-entryx_refsource_VUPEN

http://www.securitytracker.com/id?1017651

vdb-entryx_refsource_SECTRACK

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Feb 16, 2007
Vulnerability Reserved
Feb 15, 2007