QwikSec

Security Database

CVE

CWE

Training

CVE-2015-6357

Published: Nov 18, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 through 5.4.0.1 does not verify the X.509 certificate of the support.sourcefire.com SSL server, which allows man-in-the-middle attackers to spoof this server and provide an invalid package, and consequently execute arbitrary code, via a crafted certificate, aka Bug ID CSCuw06444.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_SECTRACK

20151116 Cisco FireSIGHT Management Center Certificate Validation Vulnerability

vendor-advisory

x_refsource_CISCO

http://packetstormsecurity.com/files/134390/Cisco-FireSIGHT-Management-Center-Certificate-Validation.html

x_refsource_MISC

http://wadofstuff.blogspot.com.au/2015/11/cve-2015-6357-firepwner-exploit-for.html

x_refsource_MISC

20151116 CVE-2015-6357: Cisco FireSIGHT Management Center SSL Validation Vulnerability

mailing-list

x_refsource_BUGTRAQ

20151117 CVE-2015-6357: Cisco FireSIGHT Management Center SSL Validation Vulnerability

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.