|
|
CVE Reference: CVE-2007-0397 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-0397 |
|
|
Description: The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.3 and Adaptive Security Device Manager (ASDM) before 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote attackers to spoof those devices to obtain sensitive information or generate incorrect information. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/31567 ST 1017535 1017536 SAID Secunia Advisory: SA23836 OSVDB 32720 CISCO http://www.cisco.com/en/US/products/products_security_advisory09186a00807c517f.shtml BID 22111 |
|
| Return to the previous page. |
