Back to search
CVE-2015-4321
Published: Aug 20, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The Unicast Reverse Path Forwarding (uRPF) implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(1.50), 9.3(2.100), 9.3(3), and 9.4(1) mishandles cases where an IP address belongs to an internal interface but is also in the ASA routing table, which allows remote attackers to bypass uRPF validation via spoofed packets, aka Bug ID CSCuv60724.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1033265
vdb-entry
x_refsource_SECTRACK
20150812 Cisco ASA Unicast Reverse Path Forwarding (uRPF) Bypass Vulnerability
vendor-advisory
x_refsource_CISCO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now