ID de Prueba:	1.3.6.1.4.1.25623.1.0.105976
Categoría:	CISCO
Título:	Cisco ASA SQL*NET Inspection Engine DoS Vulnerability (cisco-sa-20141008-asa)
Resumen:	A vulnerability in SQL*Net inspection engine code could allow; an unauthenticated, remote attacker to cause a reload of the affected system.
Descripción:	Summary: A vulnerability in SQL*Net inspection engine code could allow an unauthenticated, remote attacker to cause a reload of the affected system. Vulnerability Insight: The vulnerability is due to improper handling of crafted SQL REDIRECT packets by a system running an affected version of Cisco ASA Software with SQL*Net inspection enabled. An unauthenticated, remote attacker could exploit this vulnerability by sending a crafted sequence of REDIRECT packets through the targeted system. Vulnerability Impact: A successful exploit could cause the system to reload, resulting in a DoS condition. Affected Software/OS: Cisco ASA version 7.2, 8.2, 8.3, 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3382 Cisco Security Advisory: 20141008 Multiple Vulnerabilities in Cisco ASA Software http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141008-asa
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.