CVE-2010-0568

2010-02-1917:30:00

[email protected]

web.nvd.nist.gov

cve-2010-0568

cisco asa

pix

vulnerability

ntlmv1

authentication

remote

bypass

nvd

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.2%

JSON

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.7), 8.1 before 8.1(2.40), and 8.2 before 8.2(2.1); and Cisco PIX 500 Series Security Appliance; allows remote attackers to bypass NTLMv1 authentication via a crafted username, aka Bug ID CSCte21953.

Affected configurations

NVD

Node

ciscoasa_5500Match7.1

ciscoasa_5500Match7.2

ciscoasa_5500Match8.0

ciscoasa_5500Match8.1

ciscoasa_5500Match8.2

ciscopix_500

CPENameOperatorVersion
cisco:asa_5500cisco asa 5500eq7.1
cisco:asa_5500cisco asa 5500eq7.2
cisco:asa_5500cisco asa 5500eq8.0
cisco:asa_5500cisco asa 5500eq8.1
cisco:asa_5500cisco asa 5500eq8.2
cisco:pix_500cisco pix 500eq*

CPE	Name	Operator	Version
cisco:asa_5500	cisco asa 5500	eq	7.1
cisco:asa_5500	cisco asa 5500	eq	7.2
cisco:asa_5500	cisco asa 5500	eq	8.0
cisco:asa_5500	cisco asa 5500	eq	8.1
cisco:asa_5500	cisco asa 5500	eq	8.2
cisco:pix_500	cisco pix 500	eq	*