CVE-2007-2464

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) and PIX versions 7.1 before 7.1(2)49 Cisco Adaptive Security Appliance (ASA) and PIX versions 7.2 before 7.2(2)19

Description The issue is related to a race condition when using clientless SSL VPNs, allowing remote attackers to cause a denial of service (device reload) via non-standard SSL sessions. Additionally, multiple vulnerabilities exist in the Cisco Adaptive Security Appliance (ASA) and PIX security appliances, including Lightweight Directory Access Protocol (LDAP) authentication bypass vulnerabilities and denial of service (DoS) vulnerabilities.

Recommendations For versions 7.1 before 7.1(2)49, update to version 7.1(2)49 or later to resolve the issue. For versions 7.2 before 7.2(2)19, update to version 7.2(2)19 or later to resolve the issue. As a temporary workaround, consider restricting the use of clientless SSL VPNs until a patch is available. Restrict access to LDAP authentication to minimize the risk of exploitation.