Full Disclosure mailing list archives

Re: Cisco ASA VPN - Zero Day Exploit

From: Daniel Hadfield <dan () pingsweep co uk>
Date: Mon, 22 Feb 2016 10:34:44 +0000


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Is there a CVE ID for this?

Also what firmware does this effect? I tested this and the input gets
HTML encoded so is nulled.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=UjVE
-----END PGP SIGNATURE-----

Attachment: 0xF697D2D0.asc
Description:

Attachment: 0xF697D2D0.asc.sig
Description:


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Current thread:

Cisco ASA VPN - Zero Day Exploit Juan Sacco (Feb 18)
- Re: Cisco ASA VPN - Zero Day Exploit Joey Maresca (Feb 22)
- Re: Cisco ASA VPN - Zero Day Exploit Mark-David McLaughlin (marmclau) (Feb 22)
- Re: Cisco ASA VPN - Zero Day Exploit Daniel Hadfield (Feb 22)
  - Re: Cisco ASA VPN - Zero Day Exploit Joey Maresca (Feb 25)