漏洞类别:Security Policy
漏洞等级: 
漏洞信息
An obsolete version of Cisco ASA was detected on the host. Support for Cisco ASA version 9.5 ended on May 3, 2017. No further releases or security fixes will be available for Cisco ASA version 9.5.
QID Detection Logic (Authenticated):
This QID reviews the Cisco ASA version via "show version".
The QID is posted if Cisco ASA version "9.5" is found on a Cisco ASA target.
QID Detection Logic (Unauthenticated):
This QID queries "CSCOSSLC/config-auth" on a Cisco Web Server.
The QID is posted if Cisco ASA version "9.5" is found.
漏洞危害
The system is at high risk of being exposed to security vulnerabilities. Since the vendor no longer provides updates, obsolete software is more vulnerable to viruses and other attacks.
解决方案
Users are advised to upgrade to the latest version of Cisco ASA. The latest version can be downloaded from the Cisco Software Downloads page.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论