Guest

Preview Tool

Cisco Bug: CSCun44541 - ASA cut a part of credential data during cut-thru proxy authentication

Last Modified

Apr 16, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.1(3.2)

Description (partial)

Symptom:
In a specific environment, ASA do cut a part of rear data of fragmented subsequent packet of first credential after cut-through proxy authentication success.

Conditions:
This issue is only observed in the following conditions.
1. Use Internet Explorer 8 or 9 as the client browser of cut-through proxy authentication
2. Client browser already has stored cookie caches about a destination web server
3. First credential, which has large size cookies for the destination web server, is fragmented by exceeded TCP MSS
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.