[funsec] Unintentional Password Modification Vulnerability in Cisco Firewall Pr oducts

Fergie fergdawg at netzero.net
Wed Aug 23 20:24:23 CDT 2006

Via Cisco.


Certain versions of the software for the Cisco PIX 500 Series Security
Appliances, the Cisco ASA 5500 Series Adaptive Security Appliances
(ASA), and the Firewall Services Module (FWSM) are affected by a
software bug that may cause the EXEC password, passwords of locally
defined usernames, and the enable password in the startup configuration
to be changed without user intervention.

Unauthorized users can take advantage of this bug to try to gain access
to a device that has been reloaded after passwords in its startup
configuration have been changed. In addition, authorized users can be
locked out and lose the ability to manage the affected device.



- ferg

"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 ferg's tech blog: http://fergdawg.blogspot.com/

More information about the funsec mailing list