Denial of Service Vulnerability in Cisco ASA 5500 Series and PIX Security Appliances
CVE-2010-4670

Currently unrated

Key Information:

Vendor: Cisco
Status: Adaptive Security Appliance Software; 5500 Series Adaptive Security Appliance; Asa 5500; Pix Security Appliance
Vendor: CVE Published:; 7 January 2011

Summary

A vulnerability exists in the Neighbor Discovery (ND) protocol implementation for Cisco Adaptive Security Appliances (ASA) 5500 series and PIX Security Appliances. This issue can potentially allow attackers to execute a denial of service attack by flooding the target device with an overwhelming number of Router Advertisement (RA) messages from various source addresses. This flood can lead to excessive CPU consumption and potential device hang-ups, disrupting normal network operations. For remediation, it is critical to update to the latest software versions that address this vulnerability.

References

http://www.securityfocus.com/bid/45760

vdb-entryx_refsource_BID

http://mirror.fem-net.de/CCC/27C3/mp4-h264-HQ/27c3-3957-e...

x_refsource_MISC

http://www.securitytracker.com/id?1024963

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 7, 2011
Vulnerability Reserved
Jan 6, 2011