CVE-2009-1160

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances versions 7.0 through 7.0(8)1 Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances versions 7.1 through 7.1(2)74 Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances versions 7.2 through 7.2(4)9 Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances versions 8.0 through 8.0(4)5

Description The issue is related to the improper implementation of the implicit deny statement, which might allow remote attackers to successfully send packets that bypass intended access restrictions. Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances.

Recommendations For versions 7.0 through 7.0(8)1, update to version 7.0(8)1 or later. For versions 7.1 through 7.1(2)74, update to version 7.1(2)74 or later. For versions 7.2 through 7.2(4)9, update to version 7.2(4)9 or later. For versions 8.0 through 8.0(4)5, update to version 8.0(4)5 or later.