漏洞类别:Cisco
漏洞等级: 
漏洞信息
Cisco Adaptive Security Appliance (ASA) Software contains a vulnerability that could allow an authenticated, remote attacker to cause a denial of service condition. ASA receives a RADIUS packet with a crafted attribute value during a radius exchange.
The vulnerability is due to insufficient validation of RADIUS packets including crafted attributes. The attacker needs to know the RADIUS shared secret and inject the crafted packet while a RADIUS exchange is in progress.
漏洞危害
An attacker could exploit this vulnerability by sending crafted RADIUS packets to the affected system, that could allow an authenticated, remote attacker to cause a denial of service condition.
解决方案
Refer to Cisco ASA advisory CSCun69561 for updates and patch information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论