[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2012-0353

Date: (C)2012-03-14   (M)2017-08-29
 
CVSS Score: 7.1Access Vector: NETWORK
Exploitability Subscore: 8.6Access Complexity: MEDIUM
Impact Subscore: 6.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: COMPLETE











The UDP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.5), 8.3 before 8.3(2.22), 8.4 before 8.4(2.1), and 8.5 before 8.5(1.2) does not properly handle flows, which allows remote attackers to cause a denial of service (device reload) via a crafted series of (1) IPv4 or (2) IPv6 UDP packets, aka Bug ID CSCtq10441.

Reference:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-asa
SECUNIA-48423
BID-52484
OSVDB-80043
cisco-udp-dos(74029)

CPE    25
cpe:/h:cisco:5500_series_adaptive_security_appliance
cpe:/h:cisco:catalyst_6513:-
cpe:/h:cisco:catalyst_6509-e:-
cpe:/h:cisco:catalyst_6504-e:-
...
CWE    1
CWE-20

© 2013 SecPod Technologies