The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to change the user-cache contents via a replay attack involving crafted RADIUS Change of Authorization (CoA) messages, aka Bug ID CSCuj45332.
References
| Link | Resource |
|---|---|
| http://osvdb.org/101838 | |
| http://secunia.com/advisories/56366 | |
| http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0655 | Vendor Advisory |
| http://tools.cisco.com/security/center/viewAlert.x?alertId=32362 | Vendor Advisory |
| http://www.securityfocus.com/bid/64700 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1029575 | Third Party Advisory VDB Entry |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/90164 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2014-01-08T21:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2014-01-02T00:00:00
Link: CVE-2014-0655
JSON object: View
NVD Information
Status : Modified
Published: 2014-01-08T21:55:06.333
Modified: 2017-08-29T01:34:13.873
Link: CVE-2014-0655
JSON object: View
Redhat Information
No data.
CWE