The DCERPC Inspection implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 through 9.5.1 allows remote authenticated users to bypass an intended DCERPC-only ACL by sending arbitrary network traffic, aka Bug ID CSCuu67782.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2016-01-14 19:59
Updated : 2016-12-07 10:20
NVD link : CVE-2015-6423
Mitre link : CVE-2015-6423
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
cisco
- adaptive_security_appliance_software