CVE-2010-0149

Currently unrated

Key Information:

Vendor: Cisco
Status: Asa 5500; Pix 500
Vendor: CVE Published:; 19 February 2010

Summary

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 before 7.2(4.46), 8.0 before 8.0(4.38), 8.1 before 8.1(2.29), and 8.2 before 8.2(1.5); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (prevention of new connections) via crafted TCP segments during termination of the TCP connection that cause the connection to remain in CLOSEWAIT status, aka "TCP Connection Exhaustion Denial of Service Vulnerability."

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/38275

vdb-entryx_refsource_BID

http://secunia.com/advisories/38618

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Feb 19, 2010
Vulnerability Reserved
Jan 4, 2010