Vulnerability
Description
An unauthenticated, remote attacker might utilise a vulnerability in the Cisco Adaptive Security Appliance (ASA) web interface to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) scenario. The ASA may not reload on some software releases, but an attacker could use directory traversal techniques to view important system information without authentication. The vulnerability is caused by the HTTP URL’s input not being properly validated.
Recommendations
- This vulnerability has been addressed by Cisco software releases. There are no workarounds available for this flaw.
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
