Denial of Service Flaw in Cisco Adaptive Security Appliances
CVE-2009-4922

Currently unrated

Key Information:

Vendor: Cisco
Status: Asa 5580
Vendor: CVE Published:; 29 June 2010

Summary

A vulnerability exists in Cisco Adaptive Security Appliances (ASA) 5580 series devices, which can be exploited by remote authenticated users to create numerous IPsec L2L tunnels from various peer IP addresses. This excessive number of tunnels can overwhelm the device, leading to a denial of service. Administrators should review the software version and ensure it is updated to 8.1(2) or later to mitigate this risk. For detailed insights, refer to the release notes on Cisco's website.

References

http://www.cisco.com/en/US/docs/security/asa/asa81/releas...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 29, 2010