Cisco Adaptive Security Appliance AAA Authentication Feature Information Disclosure Vulnerability

Cisco Adaptive Security Appliance (ASA) is prone to multiple information-disclosure vulnerability when communicating information through an insecure channel. The issue arises in the Authentication, Authorization and Accounting (AAA) feature when troubleshooting the ASA server.

An attacker can exploit this issue to access users' authentication credentials. Information obtained may lead to further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus