Fresh info from Black Hat 2010!
King demonstrated a cross-site scripting attack against the centralized management console of McAfee’s Network Security Manager, a system that manages the sensors enterprises have deployed in the network as part of McAfee’s intrusion prevention system (IPS). The vulnerability enables an attacker to execute remote code on a browser, steal a session cookie of an administrator and log in with no credentials. By using the technique, an attacker could gain full control of the McAfee IPS.
SecureWorks’ Jarmoc demonstrated several firewall vulnerabilities within Cisco’s ASA Firewall, a widely used firewall that is deployed in SoHo environments as well as Fortune 500 companies. One flaw allows an attacker to bypass the access control list (ACL), which negates the firewall’s security policy settings. Jarmoc also found issues with Cisco’s Adaptive Security Device Manager (ASDM), a Java-based GUI used for administering the firewall. Weaknesses within the authentication mechanism enable several different techniques that can allow an attacker to gain administrator credentials and execute code.