Description
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 process IKE requests despite a vpnclient mode configuration, which allows remote attackers to obtain potentially sensitive information by reading IKE responder traffic, aka Bug ID CSCtt07749.
Affected products
- Cisco / 5500_series_adaptive_security_appliance
- Cisco / adaptive_security_appliance_software8.2(2) – 8.2(2)
- Cisco / adaptive_security_appliance_software8.2(3) – 8.2(3)
- Cisco / adaptive_security_appliance_software8.2(3.9) – 8.2(3.9)
- Cisco / adaptive_security_appliance_software8.2(4) – 8.2(4)
- Cisco / adaptive_security_appliance_software8.2(4.1) – 8.2(4.1)
- Cisco / adaptive_security_appliance_software8.2(4.4) – 8.2(4.4)
- Cisco / adaptive_security_appliance_software8.2(5) – 8.2(5)
- Cisco / adaptive_security_appliance_software8.2.1 – 8.2.1
- Cisco / adaptive_security_appliance_software8.2.2 – 8.2.2
- Cisco / adaptive_security_appliance_software8.2.2 – 8.2.2
- Cisco / adaptive_security_appliance_software8.2(1) – 8.2(1)
- Cisco / adaptive_security_appliance_software8.3(1) – 8.3(1)
- Cisco / adaptive_security_appliance_software8.3(2) – 8.3(2)
- Cisco / adaptive_security_appliance_software8.3.1 – 8.3.1
- Cisco / adaptive_security_appliance_software8.3.1 – 8.3.1
- Cisco / adaptive_security_appliance_software8.3.2 – 8.3.2
- Cisco / adaptive_security_appliance_software8.4 – 8.4
- Cisco / adaptive_security_appliance_software8.4(1) – 8.4(1)
- Cisco / adaptive_security_appliance_software8.4(1.11) – 8.4(1.11)
- Cisco / adaptive_security_appliance_software8.4(2) – 8.4(2)
- Cisco / adaptive_security_appliance_software8.4(2.11) – 8.4(2.11)
- Cisco / adaptive_security_appliance_software8.2.3 – 8.2.3