Executive Summary

Summary
Title Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances
Informations
Name cisco-sa-20100217-asa First vendor Publication 2009-12-18
Vendor Cisco Last vendor Modification 2010-02-17
Severity (Vendor) N/A Revision 1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score 7.8 Attack Range Network
Cvss Impact Score 6.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Cisco ASA 5500 Series Adaptive Security Appliances are affected by the following vulnerabilities:

* TCP Connection Exhaustion Denial of Service Vulnerability
* Session Initiation Protocol (SIP) Inspection Denial of Service Vulnerabilities
* Skinny Client Control Protocol (SCCP) Inspection Denial of Service Vulnerability
* WebVPN Datagram Transport Layer Security (DTLS) Denial of Service Vulnerability
* Crafted TCP Segment Denial of Service Vulnerability
* Crafted Internet Key Exchange (IKE) Message Denial of Service Vulnerability
* NT LAN Manager version 1 (NTLMv1) Authentication Bypass Vulnerability

These vulnerabilities are not interdependent; a release that is affected by one vulnerability is not necessarily affected by the others.

There are workarounds for some of the vulnerabilities disclosed in this advisory.

Cisco has released free software updates that address these vulnerabilities.

Original Source

Url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1 (...)

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware 5
Hardware 3
Hardware 1

Open Source Vulnerability Database (OSVDB)

Id Description
62437 Cisco Multiple Products Crafted Username NTLMv1 Authentication Bypass

62436 Cisco Multiple Products Malformed IKE Message Handling Remote DoS

62435 Cisco Multiple Products SIP Message Processing Unspecified Remote DoS (2010-0...

62434 Cisco Multiple Products SIP Message Processing Unspecified Remote DoS (2010-0...

62433 Cisco Multiple Products Series TCP Connection Exhaustion Remote DoS

62432 Cisco Multiple Products SCCP Inspection Malformed Skinny Control Message Hand...

62431 Cisco ASA 5500 Series Malformed TCP Segment Handling Remote DoS

62430 Cisco ASA 5500 Series WebVPN Malformed DTLS Message Remote DoS

Snort® IPS/IDS

Date Description
2017-08-10 Cisco ASA malformed SCCP packet denial of service attempt
RuleID : 43525 - Revision : 2 - Type : SERVER-OTHER
2017-07-25 Cisco ASA 5500 series denial of service attempt
RuleID : 43297 - Revision : 2 - Type : SERVER-OTHER
2014-01-10 Microsoft Windows Authenticode signature verification bypass attempt
RuleID : 26601 - Revision : 4 - Type : FILE-EXECUTABLE
2014-01-10 Microsoft Windows Authenticode signature verification bypass attempt
RuleID : 26590 - Revision : 5 - Type : FILE-EXECUTABLE

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2013-05-11 00:42:36
  • Multiple Updates