var-202001-0086
Vulnerability from variot
Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks. The Cisco IronPort WSA handles the key pair cache improperly. An attacker can forge any domain certificate through a man-in-the-middle attack to obtain encrypted sensitive information. Successfully exploiting these issues will allow attackers to bypass security restrictions and perform unauthorized actions. The program offers features such as Web Reputation Filter (WBRS) and anti-malware scanning engine. AsyncOS is an operating system that runs on it. A remote attacker could exploit this vulnerability to perform a man-in-the-middle attack by injecting newly created credentials into a server-side session
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-202001-0086", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "ironport web security appliance", scope: "lt", trust: 1.8, vendor: "cisco", version: "7.5", }, { model: "ironport web security appliance", scope: "eq", trust: 0.6, vendor: "cisco", version: "7.x", }, ], sources: [ { db: "CNVD", id: "CNVD-2012-1837", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "NVD", id: "CVE-2012-0334", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:cisco:ironport_web_security_appliance:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "7.5", vulnerable: true, }, ], operator: "OR", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2012-0334", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Jeff Jarmoc", sources: [ { db: "BID", id: "52981", }, ], trust: 0.3, }, cve: "CVE-2012-0334", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "HIGH", accessVector: "ADJACENT_NETWORK", authentication: "NONE", author: "NVD", availabilityImpact: "NONE", baseScore: 3.2, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.2, impactScore: 4.9, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "LOW", trust: 1, userInteractionRequired: true, vectorString: "AV:A/AC:H/Au:N/C:P/I:P/A:N", version: "2.0", }, { acInsufInfo: null, accessComplexity: "High", accessVector: "Adjacent Network", authentication: "None", author: "NVD", availabilityImpact: "None", baseScore: 3.2, confidentialityImpact: "Partial", exploitabilityScore: null, id: "CVE-2012-0334", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Low", trust: 0.8, userInteractionRequired: null, vectorString: "AV:A/AC:H/Au:N/C:P/I:P/A:N", version: "2.0", }, { accessComplexity: "HIGH", accessVector: "ADJACENT_NETWORK", authentication: "NONE", author: "VULHUB", availabilityImpact: "NONE", baseScore: 3.2, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.2, id: "VHN-53615", impactScore: 4.9, integrityImpact: "PARTIAL", severity: "LOW", trust: 0.1, vectorString: "AV:A/AC:H/AU:N/C:P/I:P/A:N", version: "2.0", }, ], cvssV3: [ { attackComplexity: "HIGH", attackVector: "ADJACENT_NETWORK", author: "NVD", availabilityImpact: "NONE", baseScore: 6.4, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", exploitabilityScore: 1.2, impactScore: 5.2, integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", trust: 1, userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N", version: "3.1", }, { attackComplexity: "High", attackVector: "Adjacent Network", author: "NVD", availabilityImpact: "None", baseScore: 6.4, baseSeverity: "Medium", confidentialityImpact: "High", exploitabilityScore: null, id: "CVE-2012-0334", impactScore: null, integrityImpact: "High", privilegesRequired: "None", scope: "Unchanged", trust: 0.8, userInteraction: "Required", vectorString: "CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2012-0334", trust: 1.8, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-201204-135", trust: 0.6, value: "MEDIUM", }, { author: "VULHUB", id: "VHN-53615", trust: 0.1, value: "LOW", }, ], }, ], sources: [ { db: "VULHUB", id: "VHN-53615", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "NVD", id: "CVE-2012-0334", }, { db: "CNNVD", id: "CNNVD-201204-135", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks. The Cisco IronPort WSA handles the key pair cache improperly. An attacker can forge any domain certificate through a man-in-the-middle attack to obtain encrypted sensitive information. \nSuccessfully exploiting these issues will allow attackers to bypass security restrictions and perform unauthorized actions. The program offers features such as Web Reputation Filter (WBRS) and anti-malware scanning engine. AsyncOS is an operating system that runs on it. A remote attacker could exploit this vulnerability to perform a man-in-the-middle attack by injecting newly created credentials into a server-side session", sources: [ { db: "NVD", id: "CVE-2012-0334", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "CNVD", id: "CNVD-2012-1837", }, { db: "BID", id: "52981", }, { db: "VULHUB", id: "VHN-53615", }, ], trust: 2.52, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2012-0334", trust: 3.4, }, { db: "BID", id: "52981", trust: 2, }, { db: "JVNDB", id: "JVNDB-2012-006565", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201204-135", trust: 0.7, }, { db: "CNVD", id: "CNVD-2012-1837", trust: 0.6, }, { db: "VULHUB", id: "VHN-53615", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2012-1837", }, { db: "VULHUB", id: "VHN-53615", }, { db: "BID", id: "52981", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "NVD", id: "CVE-2012-0334", }, { db: "CNNVD", id: "CNNVD-201204-135", }, ], }, id: "VAR-202001-0086", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2012-1837", }, { db: "VULHUB", id: "VHN-53615", }, ], trust: 0.06999999999999999, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2012-1837", }, ], }, last_update_date: "2023-12-18T11:59:05.206000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "Cisco-SA-20120412-CVE-2012-0334", trust: 0.8, url: "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120412-cve-2012-0334", }, { title: "Cisco IronPort Web Security Appliance AsyncOS Enter the fix for the verification error vulnerability", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=118082", }, ], sources: [ { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "CNNVD", id: "CNNVD-201204-135", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-20", trust: 1.9, }, ], sources: [ { db: "VULHUB", id: "VHN-53615", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "NVD", id: "CVE-2012-0334", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.7, url: "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120412-cve-2012-0334", }, { trust: 1.7, url: "http://www.securityfocus.com/bid/52981", }, { trust: 1.4, url: "https://nvd.nist.gov/vuln/detail/cve-2012-0334", }, { trust: 0.8, url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-0334", }, { trust: 0.6, url: "http://www.secureworks.com/research/threats/transitive-trust/http", }, { trust: 0.3, url: "http://www.cisco.com/en/us/products/ps10164/index.html", }, { trust: 0.3, url: "http://www.secureworks.com/research/threats/transitive-trust/", }, ], sources: [ { db: "CNVD", id: "CNVD-2012-1837", }, { db: "VULHUB", id: "VHN-53615", }, { db: "BID", id: "52981", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "NVD", id: "CVE-2012-0334", }, { db: "CNNVD", id: "CNNVD-201204-135", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2012-1837", }, { db: "VULHUB", id: "VHN-53615", }, { db: "BID", id: "52981", }, { db: "JVNDB", id: "JVNDB-2012-006565", }, { db: "NVD", id: "CVE-2012-0334", }, { db: "CNNVD", id: "CNNVD-201204-135", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2012-04-12T00:00:00", db: "CNVD", id: "CNVD-2012-1837", }, { date: "2020-01-15T00:00:00", db: "VULHUB", id: "VHN-53615", }, { date: "2012-04-11T00:00:00", db: "BID", id: "52981", }, { date: "2020-02-06T00:00:00", db: "JVNDB", id: "JVNDB-2012-006565", }, { date: "2020-01-15T13:15:12.577000", db: "NVD", id: "CVE-2012-0334", }, { date: "2012-04-12T00:00:00", db: "CNNVD", id: "CNNVD-201204-135", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2012-04-12T00:00:00", db: "CNVD", id: "CNVD-2012-1837", }, { date: "2020-01-23T00:00:00", db: "VULHUB", id: "VHN-53615", }, { date: "2012-04-11T00:00:00", db: "BID", id: "52981", }, { date: "2020-02-06T00:00:00", db: "JVNDB", id: "JVNDB-2012-006565", }, { date: "2020-01-23T17:13:03.480000", db: "NVD", id: "CVE-2012-0334", }, { date: "2020-05-09T00:00:00", db: "CNNVD", id: "CNNVD-201204-135", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "remote", sources: [ { db: "CNNVD", id: "CNNVD-201204-135", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Cisco IronPort Web Security Appliance AsyncOS Input validation vulnerability in software", sources: [ { db: "JVNDB", id: "JVNDB-2012-006565", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "input validation error", sources: [ { db: "CNNVD", id: "CNNVD-201204-135", }, ], trust: 0.6, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.