Denial of Service Vulnerability in Cisco Adaptive Security Appliances
CVE-2010-4692

Currently unrated

Key Information:

Vendor: Cisco
Status: Adaptive Security Appliance Software; 5500 Series Adaptive Security Appliance; Asa 5500
Vendor: CVE Published:; 7 January 2011

Summary

An unspecified vulnerability exists in Cisco Adaptive Security Appliances (ASA) 5500 series devices, which can be exploited by remote attackers. By establishing a significant number of LAN-to-LAN (L2L) IPsec sessions, attackers can induce a denial of service, leading to crashes of the affected devices. This vulnerability, associated with Bug ID CSCth36592, affects software versions prior to 8.3(2) and poses risks to the overall security and stability of network environments.

References

http://www.securitytracker.com/id?1024963

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/45768

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/docs/security/asa/asa83/releas...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 7, 2011
Vulnerability Reserved
Jan 7, 2011