This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Cisco First view 2007-02-15
Product Asa 5500 Last view 2013-08-05
Version 7.1 Type Hardware
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:h:cisco:asa_5500

Activity : Overall

Related : CVE

  Date Alert Description
5.8 2013-08-05 CVE-2013-0149

The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM, NX-OS, and StarOS before 14.0.50488 does not properly validate Link State Advertisement (LSA) type 1 packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a (1) unicast or (2) multicast packet, aka Bug IDs CSCug34485, CSCug34469, CSCug39762, CSCug63304, and CSCug39795.

7.8 2010-02-19 CVE-2010-0569

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.2), 8.1 before 8.1(2.37), and 8.2 before 8.2(1.16); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka Bug ID CSCtc96018.

7.1 2010-02-19 CVE-2010-0568

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.7), 8.1 before 8.1(2.40), and 8.2 before 8.2(2.1); and Cisco PIX 500 Series Security Appliance; allows remote attackers to bypass NTLMv1 authentication via a crafted username, aka Bug ID CSCte21953.

5 2010-02-19 CVE-2010-0567

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.1), 8.1 before 8.1(2.37), and 8.2 before 8.2(1.15); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (active IPsec tunnel loss and prevention of new tunnels) via a malformed IKE message through an existing tunnel to UDP port 4500, aka Bug ID CSCtc47782.

7.1 2010-02-19 CVE-2010-0566

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(4.44), 8.1 before 8.1(2.35), and 8.2 before 8.2(1.10) allows remote attackers to cause a denial of service (device reload) via a malformed TCP segment when certain NAT translation and Cisco AIP-SSM configurations are used, aka Bug ID CSCtb37219.

7.8 2010-02-19 CVE-2010-0565

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 before 7.2(4.45), 8.0 before 8.0(4.44), 8.1 before 8.1(2.35), and 8.2 before 8.2(1.10), allows remote attackers to cause a denial of service (page fault and device reload) via a malformed DTLS message, aka Bug ID CSCtb64913 and "WebVPN DTLS Denial of Service Vulnerability."

7.8 2010-02-19 CVE-2010-0150

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.2), 8.1 before 8.1(2.37), and 8.2 before 8.2(1.16); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka Bug ID CSCsy91157.

7.8 2010-02-19 CVE-2010-0149

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 before 7.2(4.46), 8.0 before 8.0(4.38), 8.1 before 8.1(2.29), and 8.2 before 8.2(1.5); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (prevention of new connections) via crafted TCP segments during termination of the TCP connection that cause the connection to remain in CLOSEWAIT status, aka "TCP Connection Exhaustion Denial of Service Vulnerability."

7.8 2007-02-15 CVE-2007-0962

Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when "inspect http" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.

7.8 2007-02-15 CVE-2007-0961

Cisco PIX 500 and ASA 5500 Series Security Appliances 6.x before 6.3(5.115), 7.0 before 7.0(5.2), and 7.1 before 7.1(2.5), and the FWSM 3.x before 3.1(3.24), when the "inspect sip" option is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed SIP packets.

Open Source Vulnerability Database (OSVDB)

id Description
62437 Cisco Multiple Products Crafted Username NTLMv1 Authentication Bypass
62436 Cisco Multiple Products Malformed IKE Message Handling Remote DoS
62435 Cisco Multiple Products SIP Message Processing Unspecified Remote DoS (2010-0...
62434 Cisco Multiple Products SIP Message Processing Unspecified Remote DoS (2010-0...
62433 Cisco Multiple Products Series TCP Connection Exhaustion Remote DoS
62431 Cisco ASA 5500 Series Malformed TCP Segment Handling Remote DoS
62430 Cisco ASA 5500 Series WebVPN Malformed DTLS Message Remote DoS
33055 Cisco PIX / ASA inspect http Malformed HTTP Traffic DoS
33054 Cisco PIX / ASA inspect sip Malformed SIP Packet DoS

Information Assurance Vulnerability Management (IAVM)

id Description
2014-B-0113 Cisco NX-OS Software Remote Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0053881
2013-A-0195 Multiple Vulnerabilities in Oracle & Sun Systems Product Suite
Severity: Category I - VMSKEY: V0040781
2013-B-0086 Cisco StarOS Remote Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0040039
2013-A-0157 Cisco ASA and Pix Firewall Remote Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0040041
2013-A-0159 Cisco IOS XE Remote Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0040042

Snort® IPS/IDS

Date Description
2017-07-25 Cisco ASA 5500 series denial of service attempt
RuleID : 43297 - Type : SERVER-OTHER - Revision : 2

Nessus® Vulnerability Scanner

id Description
2013-09-20 Name: The remote SuSE 11 host is missing a security update.
File: suse_11_quagga-130822.nasl - Type: ACT_GATHER_INFO
2013-08-16 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20130801-lsaospf-asa.nasl - Type: ACT_GATHER_INFO
2013-08-16 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20130801-lsaospf-ios.nasl - Type: ACT_GATHER_INFO
2013-08-16 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20130801-lsaospf-iosxe.nasl - Type: ACT_GATHER_INFO
2013-08-16 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20130801-lsaospf-nxos.nasl - Type: ACT_GATHER_INFO
2013-08-02 Name: The remote device is missing a vendor-supplied security patch.
File: juniper_jsa10582.nasl - Type: ACT_GATHER_INFO