Lucene search

CiscoCISCO-SA-20140221-CVE-2014-0738

HistoryFeb 21, 2014 - 3:36 p.m.

Cisco Adaptive Security Appliance Phone Proxy CTL Authentication Vulnerability

2014-02-2115:36:09

tools.cisco.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.001

Percentile

49.3%

JSON

A vulnerability in the Phone Proxy function of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to modify the trust of the Certificate Trust List (CTL) of a remote IP phone.

The vulnerability is due to insufficient authentication of the CTL file. An attacker could exploit this vulnerability by injecting a modified CTL file to the phone proxy. An exploit could allow the attacker to impact the entities trusted by the IP phone.

Cisco has confirmed the vulnerability in a security notice; however, software updates are not available.

To exploit this vulnerability, an attacker may require access to trusted, internal networks to inject a modified CTL file to the phone proxy of an affected device. This access requirement decreases the likelihood of a successful exploit.

Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.

Affected configurations

Vulners

Node

ciscoadaptive_security_appliance_softwareMatch9.1

ciscoadaptive_security_appliance_softwareMatch9.1.1

ciscoadaptive_security_appliance_softwareMatch9.1.1.4

ciscoadaptive_security_appliance_softwareMatch9.1.2

ciscoadaptive_security_appliance_softwareMatch9.1.3

ciscoadaptive_security_appliance_softwareMatch9.1.2.8

VendorProductVersionCPE
ciscoadaptive_security_appliance_software9.1cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.1cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.1.4cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1.4:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.2cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.3cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.1.2.8cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	adaptive_security_appliance_software	9.1	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1:::::::*
cisco	adaptive_security_appliance_software	9.1.1	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1:::::::*
cisco	adaptive_security_appliance_software	9.1.1.4	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.1.4:::::::*
cisco	adaptive_security_appliance_software	9.1.2	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2:::::::*
cisco	adaptive_security_appliance_software	9.1.3	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.3:::::::*
cisco	adaptive_security_appliance_software	9.1.2.8	cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1.2.8:::::::*

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140221-CVE-2014-0738

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.001

Percentile

49.3%

JSON

Related for CISCO-SA-20140221-CVE-2014-0738