This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.
The remote SSL VPN Server is vulnerable to an authentication bypass vulnerability.
The remote host is a Cisco Adaptive Security Appliance (ASA). The
version of the software used on this appliance is affected by an NT
LAN Manager version 1 (NTLMv1) authentication bypass vulnerability.
An attacker can exploit this flaw to log into the remote network
without supplying any credentials.
See also :
Install the appropriate firmware upgrade as described in the vendor's
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.4
Public Exploit Available : true
Nessus Plugin ID: 44945 ()
Bugtraq ID: 38279
CVE ID: CVE-2010-0568
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.