CVE-2007-2462

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) and PIX version 7.2 before 7.2(2)8

Description The issue concerns an unspecified vulnerability that allows remote attackers to bypass LDAP authentication and gain privileges when using Layer 2 Tunneling Protocol (L2TP) or Remote Management Access. Additionally, there are multiple vulnerabilities, including LDAP authentication bypass vulnerabilities and denial of service (DoS) vulnerabilities.

Recommendations For Cisco Adaptive Security Appliance (ASA) and PIX version 7.2 before 7.2(2)8, update to version 7.2(2)8 or later to resolve the issue. As a temporary workaround, consider restricting access to Remote Management and L2TP to minimize the risk of exploitation.