IKE Implementation Vulnerability in Cisco ASA 5500 Series Devices
CVE-2010-2817

Currently unrated

Key Information:

Vendor: Cisco
Status: Adaptive Security Appliance; Adaptive Security Appliance Software; Asa 5500; Asa 5505
Vendor: CVE Published:; 9 August 2010

Summary

The IKE implementation on Cisco Adaptive Security Appliances (ASA) 5500 series and PIX Security Appliances 500 series devices contains an unspecified vulnerability that allows remote attackers to exploit the system. By sending a specially crafted Internet Key Exchange (IKE) message, an attacker could potentially cause the affected device to reload, resulting in a denial of service condition. This vulnerability impacts various software versions, emphasizing the need for timely updates to mitigate risks.

References

http://secunia.com/advisories/40842

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/42190

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 9, 2010