Headline
CVE-2009-5037: ASDM Real-Time Log Viewer does not recieve any messages
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) allow remote attackers to cause a denial of service (ASDM syslog outage) via a long URL, aka Bug IDs CSCsm11264 and CSCtb92911.
ASA:8.2(1) ASDM:6.2(5)23
2xASA 5540 Flash 64MB Memory 1024MB
Syslog filter - Internal Buffer = Debugging, ASDM = Debugging, Syslog Servers = Debugging
When I logon to the ASDM, the latest ASDM Syslog messages starts rolling in the gui, but after short time it stops.
If I then start the Real-Time Log Viewer, no messages are displayed.
When I run “sh logging asdm” it is showing me new messages…
I have a failover unit in passive mode, and the “Enable logging on the failover standby unit” set. On this box the Latest ASDM Syslog Messages and Real-Time Log Viewer is working fine :-)
Does anyone had the same problem and found a solution ?