CVE-2010-4680
https://notcve.org/view.php?id=CVE-2010-4680
The WebVPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) permits the viewing of CIFS shares even when CIFS file browsing has been disabled, which allows remote authenticated users to bypass intended access restrictions via CIFS requests, aka Bug ID CSCsz80777. La aplicación WebVPN en dispositivos Cisco Adaptive Security Appliances (ASA) series 5500 con software anterior a v8.2 (3) permite la visualización de recursos compartidos de CIFS, incluso cuando se ha desactivado la navegación en los ficheros CIFS, lo que permite a usuarios remotos autenticados para eludir las restricciones de acceso previstas a través de peticiones CIFS, error conocido como CSCsz80777. • http://secunia.com/advisories/42931 http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.pdf http://www.securityfocus.com/bid/45767 http://www.securitytracker.com/id?1024963 https://exchange.xforce.ibmcloud.com/vulnerabilities/64606 • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2010-4676
https://notcve.org/view.php?id=CVE-2010-4676
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remote authenticated users to cause a denial of service (device crash) via a high volume of IPsec traffic, aka Bug ID CSCsx52748. Vulnerabilidad no especificada en dispositivos Cisco Adaptive Security Appliances (ASA) serie 5500, con software anterior a v8.2(3) permite a usuarios remotos autenticados causar una denegación de servicio (caída del dispositivo) a través de un gran volumen de tráfico IPsec, el fallo también conocido como ID CSCsx52748. • http://secunia.com/advisories/42931 http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.pdf http://www.securityfocus.com/bid/45767 http://www.securitytracker.com/id?1024963 https://exchange.xforce.ibmcloud.com/vulnerabilities/64602 • CWE-399: Resource Management Errors •
CVE-2010-4682
https://notcve.org/view.php?id=CVE-2010-4682
Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remote attackers to cause a denial of service (memory consumption) by making multiple incorrect LDAP authentication attempts, aka Bug ID CSCtf29867. Pérdida de memoria en dispositivos Cisco Adaptive Security Appliances (ASA) series 5500 con software anterior a v8.2 (3) permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) al hacer múltiples intentos fallidos de autenticación LDAP, el fallo también conocido como ID CSCtf29867. • http://secunia.com/advisories/42931 http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.pdf http://www.securityfocus.com/bid/45767 http://www.securitytracker.com/id?1024963 https://exchange.xforce.ibmcloud.com/vulnerabilities/64608 • CWE-399: Resource Management Errors •
CVE-2009-5037
https://notcve.org/view.php?id=CVE-2009-5037
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allow remote attackers to cause a denial of service (ASDM syslog outage) via a long URL, aka Bug IDs CSCsm11264 and CSCtb92911. Los dispositivos Cisco Adaptive Security Appliances (ASA) 5500 series con software anterior a 8.2(3) permiten a atacantes remotos provocar una denegación de servicio (caída del syslog ASDM) a través de una URL extensa. También conocido como Bug IDs CSCsm11264 y CSCtb92911. • http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.pdf http://www.securitytracker.com/id?1024963 https://exchange.xforce.ibmcloud.com/vulnerabilities/64732 https://supportforums.cisco.com/thread/2018112 https://supportforums.cisco.com/thread/238724 • CWE-399: Resource Management Errors •
CVE-2010-4681
https://notcve.org/view.php?id=CVE-2010-4681
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allows remote attackers to bypass SMTP inspection via vectors involving a prepended space character, aka Bug ID CSCte14901. Vulnerabilidad sin especificar en los dispositivos Cisco Adaptive Security Appliances (ASA) 5500 series con software anterior a 8.2(3). Permite a atacantes remotos evitar la inspección de SMTP a través de vectores que involucran un carácter de espacio añadido al inicio. También conocido como Bug ID CSCte14901. • http://secunia.com/advisories/42931 http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.pdf http://www.securityfocus.com/bid/45767 http://www.securitytracker.com/id?1024963 https://exchange.xforce.ibmcloud.com/vulnerabilities/64607 •