ā08-31-2014 06:05 AM
Hello All --
Currently we have a allot of Cisco ASA5510 in production configured as remote access SSL VPN end points running software version 9.1.5, current latest release for this device.
During our latest audit we found a vulnerability identified by CISCO as CSCun19025, according to the document listed below this should be resolved in version 9.1.5(3), I cant find this software version on the support portal ?
The problem is resolved in 9.2.1, but this software release is unsupported on the Cisco ASA5510.
Any ideas how to resolve this vulnerability ?
Document sources :
https://tools.cisco.com/bugsearch/bug/CSCun19025
https://www3.trustwave.com/spiderlabs/advisories/TWSL2014-008.txt
Thank you
Jacques de Jager
South Africa
ā08-31-2014 10:27 AM
You need to look for the interim-releases:
Download -> All Releases -> Interim -> 9 -> 9.1.5 Interim
ā09-14-2014 04:46 AM
Hello Karsten --
Thank you for the reply, my apology for the late reply :
I applied the interim release and it doesn't seem to resolve the vulnerability when I perform a scan - but if I look at the Security Release notes it clearly specify the image resolve the problem.
Any comment --
fw-office01# show version
Cisco Adaptive Security Appliance Software Version 9.1(5)12
Device Manager Version 7.2(1)
Compiled on Wed 20-Aug-14 09:14 by builders
System image file is "disk0:/asa915-12-k8.bin"
Thanks!
ā09-14-2014 05:37 AM
Probably it's best to open a case for that.
ā09-14-2014 02:53 PM
ā11-03-2014 09:24 AM
So what did you do to fix it?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide