ID de Prueba:	1.3.6.1.4.1.25623.1.0.105976
Categoría:	CISCO
Título:	Cisco ASA SQL*NET Inspection Engine DoS Vulnerability
Resumen:	The SQL*NET Inspection Engine of Cisco ASA is prone to a Denial of;Service vulnerability.
Descripción:	Summary: The SQL*NET Inspection Engine of Cisco ASA is prone to a Denial of Service vulnerability. Vulnerability Insight: A vulnerability in SQL*Net inspection engine code could allow an unauthenticated, remote attacker to cause a reload of the affected system. The vulnerability is due to improper handling of crafted SQL REDIRECT packets by a system running an affected version of Cisco ASA Software with SQL*Net inspection enabled. Vulnerability Impact: An unauthenticated, remote attacker could exploit this vulnerability by sending a crafted sequence of REDIRECT packets through the targeted system. A successful exploit could cause the system to reload, resulting in a DoS condition. Affected Software/OS: Version 7.2, 8.2, 8.3, 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1 Solution: Apply the appropriate updates from Cisco. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	BugTraq ID: 70295 Common Vulnerability Exposure (CVE) ID: CVE-2014-3382 Cisco Security Advisory: 20141008 Multiple Vulnerabilities in Cisco ASA Software http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141008-asa
Copyright	This script is Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.