Lucene search

CiscoCVE-2015-6357

HistoryNov 18, 2015 - 11:59 a.m.

CVE-2015-6357

2015-11-1811:59:01

CWE-20

cisco

web.nvd.nist.gov

cisco

firesight

management center

man-in-the-middle

attack

spoofing

bug id

cscuw06444

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.1

Confidence

High

EPSS

0.003

Percentile

71.9%

JSON

The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 through 5.4.0.1 does not verify the X.509 certificate of the support.sourcefire.com SSL server, which allows man-in-the-middle attackers to spoof this server and provide an invalid package, and consequently execute arbitrary code, via a crafted certificate, aka Bug ID CSCuw06444.

Affected configurations

Nvd

Node

ciscofiresight_system_softwareMatch5.2.0

ciscofiresight_system_softwareMatch5.3.0

ciscofiresight_system_softwareMatch5.3.1.1

ciscofiresight_system_softwareMatch5.3.1.2

ciscofiresight_system_softwareMatch5.3.1.5

ciscofiresight_system_softwareMatch5.4.0

ciscofiresight_system_softwareMatch5.4.0.1

VendorProductVersionCPE
ciscofiresight_system_software5.2.0cpe:2.3:a:cisco:firesight_system_software:5.2.0:*:*:*:*:*:*:*
ciscofiresight_system_software5.3.0cpe:2.3:a:cisco:firesight_system_software:5.3.0:*:*:*:*:*:*:*
ciscofiresight_system_software5.3.1.1cpe:2.3:a:cisco:firesight_system_software:5.3.1.1:*:*:*:*:*:*:*
ciscofiresight_system_software5.3.1.2cpe:2.3:a:cisco:firesight_system_software:5.3.1.2:*:*:*:*:*:*:*
ciscofiresight_system_software5.3.1.5cpe:2.3:a:cisco:firesight_system_software:5.3.1.5:*:*:*:*:*:*:*
ciscofiresight_system_software5.4.0cpe:2.3:a:cisco:firesight_system_software:5.4.0:*:*:*:*:*:*:*
ciscofiresight_system_software5.4.0.1cpe:2.3:a:cisco:firesight_system_software:5.4.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	firesight_system_software	5.2.0	cpe:2.3:a:cisco:firesight_system_software:5.2.0:::::::*
cisco	firesight_system_software	5.3.0	cpe:2.3:a:cisco:firesight_system_software:5.3.0:::::::*
cisco	firesight_system_software	5.3.1.1	cpe:2.3:a:cisco:firesight_system_software:5.3.1.1:::::::*
cisco	firesight_system_software	5.3.1.2	cpe:2.3:a:cisco:firesight_system_software:5.3.1.2:::::::*
cisco	firesight_system_software	5.3.1.5	cpe:2.3:a:cisco:firesight_system_software:5.3.1.5:::::::*
cisco	firesight_system_software	5.4.0	cpe:2.3:a:cisco:firesight_system_software:5.4.0:::::::*
cisco	firesight_system_software	5.4.0.1	cpe:2.3:a:cisco:firesight_system_software:5.4.0.1:::::::*

References

packetstormsecurity.com/files/134390/Cisco-FireSIGHT-Management-Center-Certificate-Validation.html

seclists.org/fulldisclosure/2015/Nov/79

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151116-fmc

wadofstuff.blogspot.com.au/2015/11/cve-2015-6357-firepwner-exploit-for.html

www.securityfocus.com/archive/1/536913/100/0/threaded

www.securitytracker.com/id/1034161

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.1

Confidence

High

EPSS

0.003

Percentile

71.9%

JSON

Related for CVE-2015-6357