CVE-2006-4312
First published: Wed Aug 23 2006(Updated: )
Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to 3.1(1.6), causes the EXEC password, local user passwords, and the enable password to be changed to a "non-random value" under certain circumstances, which causes administrators to be locked out and might allow attackers to gain access.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco PIX | ||
| Cisco PIX | ||
| Cisco PIX Firewall | ||
| Cisco PIX Firewall | ||
| Cisco PIX | ||
| Cisco PIX | ||
| Cisco PIX Firewall | ||
| Cisco PIX Firewall | =6.3 | |
| Cisco Adaptive Security Appliance Software |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/warp/public/707/cisco-sa-20060823-firewall.shtml
- http://www.securityfocus.com/bid/19681
- http://securitytracker.com/id?1016738
- http://securitytracker.com/id?1016739
- http://securitytracker.com/id?1016740
- http://secunia.com/advisories/21616
- http://www.osvdb.org/28143
- http://www.vupen.com/english/advisories/2006/3367
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28540
Frequently Asked Questions
What is the severity of CVE-2006-4312?
CVE-2006-4312 is considered a critical vulnerability affecting Cisco PIX and ASA devices.
How do I fix CVE-2006-4312?
To mitigate CVE-2006-4312, upgrade your Cisco devices to the latest available firmware version.
Which devices are affected by CVE-2006-4312?
CVE-2006-4312 affects various models of Cisco PIX 500 Series and ASA 5500 Series devices running specific firmware versions.
What impact does CVE-2006-4312 have on network security?
CVE-2006-4312 allows unauthorized password changes, which can compromise device management and overall network security.
Is there a workaround for CVE-2006-4312?
There are no published workarounds for CVE-2006-4312; updating to a secure firmware version is the advised approach.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco pix
- canonical/cisco pix firewall
- version/cisco pix firewall/6.3
- canonical/cisco adaptive security appliance software