Denial of Service in Cisco Adaptive Security Appliances 5500 Series
CVE-2009-1156

Currently unrated

Key Information:

Vendor: Cisco
Status: Pix; Adaptive Security Appliance 5500
Vendor: CVE Published:; 9 April 2009

Summary

Cisco Adaptive Security Appliances (ASA) 5500 Series devices are susceptible to a denial of service attack when an SSL VPN or ASDM access is configured. This vulnerability can be exploited by remote attackers who send specially crafted SSL or HTTP packets, leading to a device reload. Affected versions prior to 8.0(4)25 and 8.1(2)15 are at risk, emphasizing the need for users to update their devices to mitigate this issue.

References

http://www.vupen.com/english/advisories/2009/0981

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/34429

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Apr 9, 2009
Vulnerability Reserved
Mar 26, 2009