Networking giant Cisco has updated its advisory to alert users about active exploitation of a ten-year-old vulnerability in its Adaptive Security Appliance (ASA) product.
The vulnerability, tracked as CVE-2014-2120, stems from insufficient input validation in ASA's WebVPN login page. Exploitation of this flaw could allow a remote, unauthenticated attacker to launch a cross-site scripting (XSS) attack, potentially compromising targeted users of the appliance.
The activity involving CVE-2014-2120 has been linked to the Mozi botnet, enabling attackers to amplify the scale and scope of their malicious campaigns. The Mozi botnet is infamous for its ability to exploit vulnerabilities in IoT and network devices.
Cisco is urging users of its ASA software to update their installations to the latest versions to prevent future attacks.