【公開情報】
◆JVNDB-2016-004415 複数の Cisco Adaptive Security Appliance デバイス上で稼動する ASA ソフトウェアにおける権限を取得される脆弱性 (JVN iPedia, 2016/08/22)
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-004415.html
【ニュース】
◆Want Fries With Your EXTRABACON or EPICBANANA? Cisco Addresses Two New Vulnerabilities (SecurityIntelligence, 2016/08/31)
https://securityintelligence.com/want-fries-with-your-extrabacon-or-epicbanana-cisco-addresses-two-new-vulnerabilities/
⇒ https://malware-log.hatenablog.com/entry/2016/08/31/000000_5
【ブログ】
◆The Shadow Brokers EPICBANANA and EXTRABACON Exploits (CISCO, 2016/08/17)
https://blogs.cisco.com/security/shadow-brokers
【Exploit Code】
◆EquationGroupLeak (adamcaudill)
https://github.com/adamcaudill/EquationGroupLeak/tree/master/Firewall/EXPLOITS/EPBA/EPICBANANA
◆Cisco ASA / PIX - 'EPICBANANA' Privilege Escalation (Exploit Database)
https://www.exploit-db.com/exploits/40271/