Manualsbrain.com
  1. Manuals
  2. Brands
  3. Cisco
  4. Cisco Firepower Management Center 4000
  5. Release Notes

Cisco Cisco Firepower Management Center 4000 Release Notes

Download
Page of 42
Version 5.2.0.5
Sourcefire 3D System Release Notes
19
Issues Resolved in Version 5.2.0.5
7. After the uninstallation finishes, clear your browser cache and force a reload 
of the browser. Otherwise, the user interface may exhibit unexpected 
behavior.
8. Log in to the Defense Center.
9. Select Help > About and confirm that the software version is listed correctly: 
Version 5.2.0.5.
10. Verify that the appliances in your deployment are successfully communicating 
and that there are no issues reported by the health monitor.
Issues Resolved in Version 5.2.0.5
The following issues are resolved in Version 5.2.0.5:
Security Issue 
Eliminated a cross-site scripting (XSS) vulnerability 
(CVE-2014-2012) in the intrusion rule editor pages that could allow an 
attacker to access and disclose information, imitate user actions and 
requests, or execute arbitrary JavaScript. Special thanks to Liad Mizrachi 
Check Point Security Research Team for reporting this issue. (136539)
Security Issue 
Eliminated a cross-site request forgery (CSRF) vulnerability 
(CVE-2014-2011) in the User Configuration page that could allow an attacker 
to add or edit user accounts. Special thanks to Liad Mizrachi Check Point 
Security Research Team for reporting this issue. (136910)
Security Issue 
Eliminated a CSRF vulnerability (CVE-2014-2028) in the User 
Management page that could allow an attacker to activate, deactivate, edit, 
or delete user accounts. Special thanks to Liad Mizrachi Check Point 
Security Research Team for reporting this issue. (136913)
Security Issue 
Eliminated an XSS vulnerability (CVE-2014-2275) in the 
Scheduling page, Health Monitor page, and event viewers that could allow 
an attacker to access and disclose information, imitate user actions and 
requests, or execute arbitrary JavaScript. Special thanks to Adi Volkovitz 
Check Point Security Research Team for reporting this issue. (137849, 
137852, 137855)
Issues Resolved in Previous Updates
Previously resolved issues are listed by version.