CVE-2009-4912

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5580 series devices versions prior to 8.1(2)

Description The issue allows remote attackers to bypass intended access restrictions via an HTTPS session. This occurs because the device completes an SSL handshake with an HTTPS client even if the client is unauthorized.

Recommendations For versions prior to 8.1(2), update to version 8.1(2) or later to resolve the issue.