This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote security device is missing a vendor-supplied security
The remote host (Cisco ASA 5500 series or 1000V Cloud Firewall) is
missing a security patch. It, therefore, could be affected by the
following issues :
- An unspecified vulnerability in the IKE version 1
- An unspecified vulnerability in the URL processing code
of the authentication proxy feature. (CVE-2013-1150)
- An unspecified vulnerability in the implementation to
validate digital certificates. (CVE-2013-1151)
- An unspecified vulnerability in the DNS inspection
A remote, unauthenticated attacker could exploit any of these
vulnerabilities to cause a device reload.
See also :
Apply the relevant patch referenced in Cisco Security Advisory
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.4
Public Exploit Available : true
Nessus Plugin ID: 65931 ()
Bugtraq ID: 59001590045900559012
CVE ID: CVE-2013-1149CVE-2013-1150CVE-2013-1151CVE-2013-1152
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.