This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Cisco First view 2013-01-17
Product Asa 1000v Cloud Firewall Last view 2013-01-18
Version - Type Hardware
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:h:cisco:asa_1000v_cloud_firewall

Activity : Overall

Related : CVE

  Date Alert Description
6.3 2013-01-18 CVE-2012-6395

Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share pathnames, which allows remote authenticated users to cause a denial of service (device crash) via unknown vectors, aka Bug ID CSCuc65775.

6.3 2013-01-18 CVE-2012-5717

Cisco Adaptive Security Appliances (ASA) devices with firmware 8.x through 8.4(1) do not properly manage SSH sessions, which allows remote authenticated users to cause a denial of service (device crash) by establishing multiple sessions, aka Bug ID CSCtc59462.

7.8 2013-01-17 CVE-2012-5419

Cisco Adaptive Security Appliance (ASA) software 8.7.1 and 8.7.1.1 for the Cisco ASA 1000V Cloud Firewall allows remote attackers to cause a denial of service (device reload) via a malformed H.225 H.323 IPv4 packet, aka Bug IDs CSCuc42812 and CSCuc88741.

CWE : Common Weakness Enumeration

%idName
33% (1) CWE-399 Resource Management Errors
33% (1) CWE-264 Permissions, Privileges, and Access Controls
33% (1) CWE-20 Improper Input Validation

Information Assurance Vulnerability Management (IAVM)

id Description
2013-A-0023 Cisco ASA 1000V Cloud Firewall Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0036643

Nessus® Vulnerability Scanner

id Description
2013-02-11 Name: The remote security device is missing a vendor-supplied security patch.
File: cisco_asa_ssh_timeout_dos.nasl - Type: ACT_GATHER_INFO
2013-01-22 Name: The remote security device is missing a vendor-supplied security patch.
File: cisco_asa_1000v_h323_dos.nasl - Type: ACT_GATHER_INFO