CVE-2009-1203

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) versions prior to 8.0.4(34) Cisco Adaptive Security Appliances (ASA) versions prior to 8.1.2(25) Cisco Adaptive Security Appliances (ASA) versions prior to 8.2.1(3)

Description The issue allows remote attackers to trick a user into sending WebVPN credentials to an arbitrary server via a URL associated with that server. This is due to the WebVPN on the Cisco Adaptive Security Appliances (ASA) device not properly distinguishing its own login screen from the login screens it produces for third-party servers, such as FTP and CIFS servers. An unauthenticated, remote attacker could steal user account credentials if the device has been configured to accept Clientless SSL VPN connections.

Recommendations For versions prior to 8.0.4(34), update to version 8.0.4(34) or later. For versions prior to 8.1.2(25), update to version 8.1.2(25) or later. For versions prior to 8.2.1(3), update to version 8.2.1(3) or later.