Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

T-023: Multiple Vulnerabilities in Cisco PIX and Cisco ASA

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) T-023: Multiple Vulnerabilities in Cisco PIX and Cisco ASA
# 1  
Old 11-13-2008
T-023: Multiple Vulnerabilities in Cisco PIX and Cisco ASA
Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances: 1) Windows NT domain authentication bypass; 2) IPv6 Denial of Service; and 3) Crypto Accelerator memory leak. NOTE: These vulnerabilities are independent of each other. A device may be affected by one vulnerability and not affected by another. The risk is MEDIUM. A remote intruder could make a VPN connection to a network without needing to authenticate.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

4 More Discussions You Might Find Interesting

1. IP Networking

Openswan with Cisco ASA

Hi all, I need this as soon as possible to solve it or at least to find out what is the problem. I have configured IPSec tunnels with Openswan and Cisco ASA, i have established a connection and the ping was fine, but after some time there is request time out from both sites. I don't have ASA... (0 Replies)
Discussion started by: ivancd
0 Replies

2. IP Networking

Cisco 3750 Switch ASA VPN Routing

Hi,I want connect my ASA 5510 firewall to a 3750 switch with RIP routing. Unfortunately,I am having issues passing the VPN subnet through rip to the 3750.I don't understand how the routing table is populated on the ASA. Any suggestions? (0 Replies)
Discussion started by: Ayaerlee
0 Replies

3. IP Networking

How to establish site to site vpn - Linux machine and cisco asa?

Hi, I am trying to establish vpn between my linux server and cisco asa at client side. I installed openswan on my cent os. Linux Server eth0 - 182.2.29.10 Gateway - 182.2.29.1 eth1 - 192.9.200.75 I have simple IPtables Like WAN="eth0" LAN="eth1" (0 Replies)
Discussion started by: ashokvpp
0 Replies

4. Solaris

Connecting Solaris 10 to Cisco PIX with IPsec tunnel

I having problem connecting to a Cisco PIX Log from IKE # /usr/lib/inet/in.iked -f /etc/inet/ike/config -d Jan 16 00:40:57: 2012 (+0800) *** in.iked started *** Jan 16 00:40:57: Loading configuration... Jan 16 00:40:57: Checking lifetimes in "nullrule" Jan 16 00:40:57: Using default value... (0 Replies)
Discussion started by: conandor
0 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

fwb_pix

fwb_pix(1)							 Firewall Builder							fwb_pix(1)

NAME

       fwb_ipt - Policy compiler for Cisco PIX

SYNOPSIS

       fwb_pix -fdata_file.xml [-V] [-dwdir] [-i] [-v] [-xc] [-xt] object_name

DESCRIPTION

       fwb_pix	is  firewall  policy  compiler	component  of Firewall Builder (see fwbuilder(1)). Compiler reads objects definitions and firewall
       description from the data file specified with "-f" option and generates resultant Cisco PIX configuration file. The configuration is  writ-
       ten to the file with the name the same as the name of the firewall object, plus extension ".fw".

       The data file and the name of the firewall objects must be specified on the command line. Other command line parameters are optional.

OPTIONS

       -f FILE
	      Specify the name of the data file to be processed.

       -d wdir
	      Specify  working	directory. Compiler creates file with PIX configuration in this directory.  If this parameter is missing, then PIX
	      configuration will be placed in the current working directory.

       -v     Be verbose: compiler prints diagnostic messages when it works.

       -V     Print version number and quit.

       -i     When this option is present, the last argument on the command line is supposed to be firewall object ID rather than its name

       -xc    When output file name is determined automatically (i.e. flags -o or -O are not present), the file name is composed  of  the  cluster
	      name  and  member firewall name rather than just member firewall name. This is used mostly for testing when the same member firewall
	      object can be a part of different clusters with different configurations.

       -xt    This flag makes compiler treat all fatal errors as warnings and continue	processing  rules.  Generated  configuration  script  most
	      likely will be incorrect but will include error message as a comment; this flag is used for testing and debugging.

URL

       Firewall Builder home page is located at the following URL: http://www.fwbuilder.org/

BUGS

       Please report bugs using bug tracking system on SourceForge:

       http://sourceforge.net/tracker/?group_id=5314&atid=105314

SEE ALSO

       fwbuilder(1), fwb_ipf(1), fwb_ipt(1) fwb_pf(1)

FWB
																	fwb_pix(1)