Vulnerability Details CVE-2008-3815
Unspecified vulnerability in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)3, 7.1 before 7.1(2)78, 7.2 before 7.2(4)16, 8.0 before 8.0(4)6, and 8.1 before 8.1(1)13, when configured as a VPN using Microsoft Windows NT Domain authentication, allows remote attackers to bypass VPN authentication via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.0%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/32360
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a183ba.shtml
- http://www.securityfocus.com/bid/31864
- http://www.securitytracker.com/id?1021089
- http://www.securitytracker.com/id?1021090
- http://www.vupen.com/english/advisories/2008/2899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46024
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5983
- http://secunia.com/advisories/32360
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a183ba.shtml
- http://www.securityfocus.com/bid/31864
- http://www.securitytracker.com/id?1021089
- http://www.securitytracker.com/id?1021090
- http://www.vupen.com/english/advisories/2008/2899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46024
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5983
Products affected by CVE-2008-3815
-
cpe:2.3:h:cisco:asa_5500:-
-
cpe:2.3:h:cisco:asa_5500:6.3
-
cpe:2.3:h:cisco:asa_5500:7.0
-
cpe:2.3:h:cisco:asa_5500:7.0(4)
-
cpe:2.3:h:cisco:asa_5500:7.0.4.3
-
cpe:2.3:h:cisco:asa_5500:7.1
-
cpe:2.3:h:cisco:asa_5500:7.2
-
cpe:2.3:h:cisco:asa_5500:7.2(2)
-
cpe:2.3:h:cisco:pix:7.0
-
cpe:2.3:h:cisco:pix:7.1
-
cpe:2.3:h:cisco:pix:7.2
-
cpe:2.3:h:cisco:pix:8.0
-
cpe:2.3:h:cisco:pix:8.1