CVE-2006-4312

CVE Database · CVE-2006-4312

CVE-2006-4312

· N/AModified

CVSS v3.1

N/A

EPSS

0.32%

Published

Aug 23, 2006

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to 3.1(1.6), causes the EXEC password, local user passwords, and the enable password to be changed to a "non-random value" under certain circumstances, which causes administrators to be locked out and might allow attackers to gain access.

Affected Products (9)

cisco · pix_firewall_501vulnerable

cisco · pix_firewall_506vulnerable

cisco · pix_firewall_515vulnerable

cisco · pix_firewall_515evulnerable

cisco · pix_firewall_520vulnerable

cisco · pix_firewall_525vulnerable

cisco · pix_firewall_535vulnerable

cisco · pix_firewall_softwarevulnerable

cisco · adaptive_security_appliancevulnerable

References (18)

http://secunia.com/advisories/21616