TrustKeeper Scan Engine Update - December 5, 2013

It's that time again for another TrustKeeper Scan Engine update. In this release you'll clearly see what we're thankful for, with 17 of the 23 new vulnerabilities coming from Cisco ASA and IOS.

One of those Cisco ASA vulnerabilities includes the detection logic for default credential checking on Cisco ASDM. In talking with some of our pentest breathren, it's been an item that's often overlooked by a lot of organizations for one reason or another, so it only made sense for us to include it in this release to help out. I also created a Metasploit Auxillary module for it earlier in the week to allow for more indepth testing for pentesters, which is now part of Metasploit Framework (special thanks to @sinner for his review).

As always, this release contains improvements to existing tests and their associate evidence to help aid in vulnerability remediation activities.

New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

Adobe

• Adobe ColdFusion Known Hash Authentication Bypass (CVE-2010-5290)

Cisco

• Cisco ASA Anyconnect SSL VPN DoS (CSCtt36737) (CVE-2013-3415)
• Cisco ASA ASDM Authentication Bypass (CSCuh44815) (CVE-2013-5511)
• Cisco ASA ASDM Default Credentials Discovered
• Cisco ASA DNS ALPI DoS (CSCug03975) (CVE-2013-5513)
• Cisco ASA HTTP DPI DoS (CSCud37992) (CVE-2013-5512)
• Cisco ASA IPSec ICMP DoS (CSCue18975) (CVE-2013-5507)
• Cisco ASA Remote Access VPN Authentication Bypass (CSCug83401) (CVE-2013-5510)
• Cisco ASA X.509 VPN Authentication Bypass (CSCuf52468) (CVE-2013-5509)
• Cisco Authentication Header Packet DoS (CSCub92025) (CVE-2013-1241)
• Cisco DNS-over-TCP DoS (cisco-sa-20130925-nat) (CVE-2013-5479, CVE-2013-5480, CVE-2013-5481)
• Cisco IOS ACK Flood DoS (CSCtz14399) (CVE-2013-5469)
• Cisco IOS DHCP Release DoS (CSCuh46822) (CVE-2013-5499)
• Cisco IOS HDLC32 driver DoS (cisco-sa-20130925-wedge) (CVE-2013-5477)
• Cisco IOS IPv6 Fragment Reassembly DoS (cisco-sa-20130925-ipv6vfr) (CVE-2013-5474)
• Cisco IOS OSPF LSA Packet DoS (CSCui21030) (CVE-2013-5527)
• Cisco IOS Zone-Based Firewall (ZFW) DoS (cisco-sa-20130925-cce) (CVE-2013-5476)
• Cisco ASA Clientless VPN DoS (CSCua22709) (CVE-2013-5515)

Nokia

• Nokia IPSO Unspecified Denial of Service
• Nokia IPSO Voyager HTTPDAccessLog.TCL Remote Script Execution

Oracle

• Oracle MySQL October 2013 CPU Multiple Vulnerabilities (CVE-2013-3839, CVE-2013-5807, CVE-2013-5786, CVE-2013-5767, CVE-2013-5793, CVE-2013-5770)

WordPress

• WordPress plupload Same Origin Policy Bypass (CVE-2012-2401)

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.