Denial of Service Vulnerability in Cisco Adaptive Security Appliances
CVE-2012-5717

Currently unrated

Key Information:

Vendor: Cisco
Status: Adaptive Security Appliance Software; Adaptive Security Appliance; Asa 1000v Cloud Firewall; Asa 5500
Vendor: CVE Published:; 18 January 2013

Summary

Cisco Adaptive Security Appliances (ASA) running firmware versions 8.x through 8.4(1) have a vulnerability in SSH session management. This flaw allows remote authenticated users to exploit the device by creating multiple SSH sessions, potentially resulting in a denial of service condition that can lead to the device crashing. The issue is linked to Bug ID CSCtc59462, and it highlights the importance of proper session handling in network security appliances.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Jan 18, 2013
Vulnerability Reserved
Nov 2, 2012