header-logo
Suggest Exploit
vendor:
ASA/PIX
by:
Shadow Brokers
8,8
CVSS
HIGH
Privilege Escalation
287
CWE
Product Name: ASA/PIX
Affected Version From: 8.4(7.30)
Affected Version To: 9.4(4.4)
Patch Exists: YES
Related CWE: CVE-2016-6366
CPE: o:cisco:asa
Metasploit: https://www.rapid7.com/db/vulnerabilities/cisco-asa-cve-2016-6366/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2016

Cisco ASA / PIX – Privilege Escalation (EPICBANANA)

The vulnerability exists in Cisco ASA and PIX devices, which allows an attacker to gain privileged access to the device. This exploit is known as EPICBANANA and was released by the Shadow Brokers in August 2016. The exploit is available in the form of a zip file, which can be downloaded from the Exploit Database.

Mitigation:

Cisco has released a security advisory and software updates to address this vulnerability. Administrators are advised to upgrade to the latest version of the software.
Source

Exploit-DB raw data:

# Exploit Title: Cisco ASA / PIX - Privilege Escalation (EPICBANANA)
# Date: 19-08-2016
# Exploit Author: Shadow Brokers
# Vendor Homepage: http://www.cisco.com/

 
Full Exploit:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/40271.zip

Navigation

Suggest Exploit

Services By CQR