Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x to 6.1.3, do not delete the duplicate ISAKMP SAs for a user's VPN session, which allows local users to hijack a session via a man-in-the-middle attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco PIX会话可劫持漏洞
Vulnerability Description
Cisco PIX防火墙提供企业级安全服务,包括状态检测防火墙、IPSEC、VPN、入侵检测等功能。 当处理初始化联系通知消息(contact notify messages)时,PIX没有删除重复的端与端的ISAKMP SAs,远程攻击者可以利用这个漏洞进行会话劫持攻击,未授权访问私有网络。 当用户在对等用户验证时建立VPN会话,PIX会建立一个KSAKMP SA关联的用户和他的IP地址。如果攻击者能够阻挡登录用户连接,并使用那个用户相同IP地址连接PIX,攻击者就可以成功通过PIX建立VPN会话,未授
CVSS Information
N/A
Vulnerability Type
N/A