The time-based ACL implementation on Cisco Adaptive Security Appliances (ASA) devices, and in Cisco Firewall Services Module (FWSM), does not properly handle periodic statements for the time-range command, which allows remote attackers to bypass intended access restrictions by sending network traffic during denied time periods, aka Bug IDs CSCuf79091 and CSCug45850.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firewall_services_module | Cisco | * | * |
Adaptive_security_appliance_software | Cisco | - (including) | - (including) |