CVE-2010-0149

Name of the Vulnerable Software and Affected Versions Cisco ASA 5500 Series Adaptive Security Appliance versions 7.2 before 7.2(4.46) Cisco ASA 5500 Series Adaptive Security Appliance versions 8.0 before 8.0(4.38) Cisco ASA 5500 Series Adaptive Security Appliance versions 8.1 before 8.1(2.29) Cisco ASA 5500 Series Adaptive Security Appliance versions 8.2 before 8.2(1.5) Cisco PIX 500 Series Security Appliance (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service, preventing new connections via crafted TCP segments during termination of the TCP connection, causing the connection to remain in CLOSEWAIT status.

Recommendations For Cisco ASA 5500 Series Adaptive Security Appliance version 7.2, update to 7.2(4.46) or later. For Cisco ASA 5500 Series Adaptive Security Appliance version 8.0, update to 8.0(4.38) or later. For Cisco ASA 5500 Series Adaptive Security Appliance version 8.1, update to 8.1(2.29) or later. For Cisco ASA 5500 Series Adaptive Security Appliance version 8.2, update to 8.2(1.5) or later. For Cisco PIX 500 Series Security Appliance, at the moment, there is no information about a newer version that contains a fix for this vulnerability.