Description
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before 8.2(4.1), and 8.3 before 8.3(2.13), when a Certificate Authority (CA) is configured, allow remote attackers to read arbitrary files via unspecified vectors, aka Bug ID CSCtk12352.
Affected products
- Cisco / adaptive_security_appliance8.0(2) – 8.0(2)
- Cisco / adaptive_security_appliance8.0(3) – 8.0(3)
- Cisco / adaptive_security_appliance8.0(4) – 8.0(4)
- Cisco / adaptive_security_appliance8.0(5) – 8.0(5)
- Cisco / adaptive_security_appliance8.1(1) – 8.1(1)
- Cisco / adaptive_security_appliance8.1(2) – 8.1(2)
- Cisco / adaptive_security_appliance8.2 – 8.2
- Cisco / adaptive_security_appliance8.2(1) – 8.2(1)
- Cisco / adaptive_security_appliance8.2(2) – 8.2(2)
- Cisco / adaptive_security_appliance8.3 – 8.3
- Cisco / adaptive_security_appliance_software8.0 – 8.0
- Cisco / adaptive_security_appliance_software8.3(1) – 8.3(1)
- Cisco / asa_5500
- Cisco / asa_5505
- Cisco / asa_5510
- Cisco / asa_5520
- Cisco / asa_5540
- Cisco / asa_5550
- Cisco / asa_5580
- Cisco / pix_500
- Cisco / pix_501
- Cisco / pix_506e
- Cisco / pix_firewall_506
- Cisco / pix_firewall_515
- Cisco / pix_firewall_520
- Cisco / pix_firewall_525
- Cisco / pix_firewall_535
References
- VENDOR_ADVISORYhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml
- MISChttp://www.securitytracker.com/id?1025108
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/65591
- VENDOR_ADVISORYhttp://secunia.com/advisories/43488
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2011/0493