Executive Summary

Summary
Title Cisco ASA 1000V Cloud Firewall H.323 Inspection Denial of Service Vulnerability
Informations
Name cisco-sa-20130116-asa1000v First vendor Publication 2013-01-16
Vendor Cisco Last vendor Modification 2013-01-16
Severity (Vendor) N/A Revision 1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score 7.8 Attack Range Network
Cvss Impact Score 6.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability in Cisco Adaptive Security Appliance (ASA) Software for the Cisco ASA 1000V Cloud Firewall may cause the Cisco ASA 1000V to reload after processing a malformed H.323 message. Cisco ASA 1000V Cloud Firewall is affected when H.323 inspection is enabled.

Cisco has released free software updates that address this vulnerability.

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-399 Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 2
Hardware 1

Information Assurance Vulnerability Management (IAVM)

Date Description
2013-01-31 IAVM : 2013-A-0023 - Cisco ASA 1000V Cloud Firewall Denial of Service Vulnerability
Severity : Category I - VMSKEY : V0036643

Nessus® Vulnerability Scanner

Date Description
2013-01-22 Name : The remote security device is missing a vendor-supplied security patch.
File : cisco_asa_1000v_h323_dos.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
Date Informations
2014-02-17 10:22:07
  • Multiple Updates
2013-11-11 12:37:31
  • Multiple Updates
2013-02-06 19:08:02
  • Multiple Updates
2013-01-16 21:19:09
  • First insertion