Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-1203
HistoryJun 25, 2009 - 5:00 p.m.

CVE-2009-1203

2009-06-2517:00:00
mitre
www.cve.org
6

AI Score

6.6

Confidence

Low

EPSS

0.037

Percentile

91.9%

JSON

WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 does not properly distinguish its own login screen from the login screens it produces for third-party (1) FTP and (2) CIFS servers, which makes it easier for remote attackers to trick a user into sending WebVPN credentials to an arbitrary server via a URL associated with that server, aka Bug ID CSCsy80709.

Related

prion 1
nvd 1
cve 1
cisco 1
exploitdb 1
securityvulns 2
packetstorm 1
openvas 1
prion
prion
Design/Logic Flaw
2009-06-25 17:30:00
nvd
nvd
CVE-2009-1203
2009-06-25 17:30:00
cve
cve
CVE-2009-1203
2009-06-25 17:30:00
cisco
cisco
Cisco ASA Adaptive Security Appliance Clientless SSL VPN CIFS and FTP Credential Theft Vulnerability
2009-06-24 15:51:07
exploitdb
exploitdb
Cisco Adaptive Security Appliance 8.x - Web VPN FTP or CIFS Authentication Form Phishing
2009-05-24 00:00:00
securityvulns
securityvulns
Trustwave's SpiderLabs Security Advisory TWSL2009-002
2009-06-25 00:00:00
Cisco ASA Web VPN multiple security vulnerabilities
2009-06-25 00:00:00
packetstorm
packetstorm
Cisco ASA Web VPN Vulnerabilities
2009-06-25 00:00:00
openvas
openvas
Ubuntu USN-789-1 (gst-plugins-good0.10)
2009-06-30 00:00:00

AI Score

6.6

Confidence

Low

EPSS

0.037

Percentile

91.9%

JSON
Related for CVELIST:CVE-2009-1203
prion1nvd1cve1cisco1exploitdb1securityvulns2packetstorm1openvas1