CVE-2007-0397

by Fred · 19/01/2007

The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.3 and Adaptive Security Device Manager (ASDM) before 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote attackers to spoof those devices to obtain sensitive information or generate incorrect information.

Date published : 2007-01-19

http://www.securityfocus.com/bid/22111

http://www.cisco.com/en/US/products/products_security_advisory09186a00807c517f.shtml

CVE-2007-0397

Similar

Recent Posts

Categories

CVE-2007-0397

Share this:

Similar

Recent Posts

Categories

Tags