Authentication Bypass Vulnerability in Cisco ASA 5500 Series and PIX Security Appliances
CVE-2008-3815

Currently unrated

Key Information:

Vendor: Cisco
Status: Pix; Asa 5500
Vendor: CVE Published:; 23 October 2008

Summary

An unspecified vulnerability exists in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances when configured for VPN using Microsoft Windows NT Domain authentication. This allows remote attackers to bypass VPN authentication through unknown vectors, potentially leading to unauthorized access to sensitive network data.

References

http://www.securitytracker.com/id?1021090

vdb-entryx_refsource_SECTRACK

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/31864

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 23, 2008
Vulnerability Reserved
Aug 27, 2008