Researchers uncover Cisco firewall vulnerabilites, McAfee console flaws

Fresh info from Black Hat 2010!

King demonstrated a cross-site scripting attack against the centralized management console of McAfee’s Network Security Manager, a system that manages the sensors enterprises have deployed in the network as part of McAfee’s intrusion prevention system (IPS). The vulnerability enables an attacker to execute remote code on a browser, steal a session cookie of an administrator and log in with no credentials. By using the technique, an attacker could gain full control of the McAfee IPS.

and:

SecureWorks’ Jarmoc demonstrated several firewall vulnerabilities within Cisco’s ASA Firewall, a widely used firewall that is deployed in SoHo environments as well as Fortune 500 companies. One flaw allows an attacker to bypass the access control list (ACL), which negates the firewall’s security policy settings. Jarmoc also found issues with Cisco’s Adaptive Security Device Manager (ASDM), a Java-based GUI used for administering the firewall. Weaknesses within the authentication mechanism enable several different techniques that can allow an attacker to gain administrator credentials and execute code.

via Researchers uncover Cisco firewall vulnerabilites, McAfee console flaws.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s