CVE-2008-2056

Executive Summary

Informations
Name	CVE-2008-2056	First vendor Publication	2008-06-04
Vendor	Cve	Last vendor Modification	2011-03-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score	7.8	Attack Range	Network
Cvss Impact Score	6.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Cisco Adaptive Security Appliance (ASA) and Cisco PIX security appliance 8.0.x before 8.0(3)9 and 8.1.x before 8.1(1)1 allows remote attackers to cause a denial of service (device reload) via a crafted Transport Layer Security (TLS) packet to the device interface.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2056

CWE : Common Weakness Enumeration

id	Name
CWE-20	Improper Input Validation

CPE : Common Platform Enumeration

Type	Description	Count
Hardware	Cisco Adaptive Security Appliance cpe:/h:cisco:adaptive_security_appliance:8.1 cpe:/h:cisco:adaptive_security_appliance:8.0	2
Hardware	Cisco Pix Security Appliance cpe:/h:cisco:pix_security_appliance:8.1 cpe:/h:cisco:pix_security_appliance:8.0	2

Open Source Vulnerability Database (OSVDB)

id	Description
46025	Cisco PIX / ASA Crafted Transport Layer Security (TLS) Packet Remote DoS

Internal Sources (Detail)

Source	Url
CISCO	http://www.cisco.com/en/US/products/products_security_advisory09186a00809a835...
SECTRACK	http://www.securitytracker.com/id?1020178 http://www.securitytracker.com/id?1020179
SECUNIA	http://secunia.com/advisories/30552
VUPEN	http://www.vupen.com/english/advisories/2008/1750/references
XF	http://xforce.iss.net/xforce/xfdb/42836