FTP: Cisco VPN File access
This signature detects attempts to exploit a known vulnerability against Cisco VPN 3000. A successful attack can lead to arbitrary arbitrary file access .
Extended Description
The Cisco VPN 3000 series concentrators are prone to a vulnerability that allows attackers to access arbitrary files. An attacker can exploit this issue to rename and delete arbitrary files on the affected device in the context of the FTP server process. This may facilitate further attacks.
Affected Products
Cisco vpn_3020_concentrator,Cisco vpn_3080_concentrator
References
BugTraq: 19680
URL: http://www.cisco.com/en/US/products/products_security_advisory09186a0080718330.shtml
Short Name
FTP:CISCO-VPN-ACCESS
Severity
Warning
Recommended
False
Recommended Action
None
Category
FTP
Keywords
Cisco File VPN access bid:19680
Release Date
10/24/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Cisco