Computer Security
[EN] securityvulns.ru no-pyccku


Cisco CSS / ACE multiple security vulnerabilities
Published:07.07.2010
Source:
SecurityVulns ID:10973
Type:remote
Threat Level:
6/10
Description:Certificate validation vulnerability, insufficient Web request validation.
Affected:CISCO : Cisco ACE 4710
 CISCO : Cisco CSS 11500
CVE:CVE-2010-1576 (The Cisco Content Services Switch (CSS) 11500 with software before 8.20.4.02 and the Application Control Engine (ACE) 4710 with software before A2(3.0) do not properly handle use of LF, CR, and LFCR as alternatives to the standard CRLF sequence between HTTP headers, which allows remote attackers to bypass intended header insertions or conduct HTTP request smuggling attacks via crafted header data, as demonstrated by LF characters preceding ClientCert-Subject and ClientCert-Subject-CN headers, aka Bug ID CSCta04885.)
 CVE-2010-1575 (The Cisco Content Services Switch (CSS) 11500 with software 08.20.1.01 conveys authentication data through ClientCert-* headers but does not delete client-supplied ClientCert-* headers, which might allow remote attackers to bypass authentication via crafted header data, as demonstrated by a ClientCert-Subject-CN header, aka Bug ID CSCsz04690.)
Original documentdocumentVSR Advisories, VSR Advisory: Multiple Cisco CSS / ACE Client Certificate and HTTP Header Manipulation Vulnerabilities (07.07.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod