Cisco Vulnerability


Right off the assembly line

While assesing vulnerabilities I came accross a problem. A vulnerability name "(2588513) TLS-SSL Server Blockwise Chosen-Boundary Browser Weakness, (CVE-2011-3389)" was given by the tool. Though this vulnerability is related to the certificate of the web browser, the CISCO device here is not connected to any web browser. I wanted to know that how is this possible that is the web access is already disabled how the tool can show this vulnerability? Is it a false possitive?

Explanation would be highly appriciated.



Have you looked at this Microsoft Security Advisory (2588513): Vulnerability in SSL/TLS Could Allow Information Disclosure
Top Bottom