Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0739


Vulnerability Score 4.3 4.3
CVE Id CVE-2014-0739
Last Modified 05 Mar 2014 11:50:36
Published 22 Feb 2014 04:55:09
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Race condition in the Phone Proxy component in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote attackers to bypass sec_db authentication and provide certain pass-through services to untrusted devices via a crafted configuration-file TFTP request, aka Bug ID CSCuj66766.

Vulnerable Systems


  • Cisco Adaptive Security Appliance Software -


CISCO - 20140220 Cisco Adaptive Security Appliance Phone Proxy sec_db Race Condition Vulnerability


Last Updated: 27 May 2016 11:04:34