Authentication Bypass Vulnerability in Cisco ASA 5500 and PIX Security Appliances
CVE-2009-1155

Currently unrated

Key Information:

Vendor: Cisco
Status: Pix; Adaptive Security Appliance 5500
Vendor: CVE Published:; 9 April 2009

Summary

The vulnerability allows remote attackers to bypass authentication by entering the 'AAA override-account-disable' command in the general-attributes field. Successful exploitation grants the attacker the ability to establish a VPN session with the affected Cisco ASA or PIX device. This presents a significant risk for unauthorized access to sensitive data and network resources. System administrators should ensure that they apply security updates to mitigate this vulnerability.

References

http://www.securitytracker.com/id?1022016

vdb-entryx_refsource_SECTRACK

http://www.vupen.com/english/advisories/2009/0981

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/34429

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Apr 9, 2009
Vulnerability Reserved
Mar 26, 2009