CVE-2008-0028

Name of the Vulnerable Software and Affected Versions Cisco PIX 500 Series Security Appliance versions prior to 7.2(3)6 Cisco 5500 Series Adaptive Security Appliance (ASA) versions prior to 8.0(3)

Description The issue allows remote attackers to cause a denial of service, resulting in a device reload, via a crafted IP packet when the Time-to-Live (TTL) decrement feature is enabled. This occurs during the processing of a crafted IP packet.

Recommendations For Cisco PIX 500 Series Security Appliance versions prior to 7.2(3)6, update to version 7.2(3)6 or later to resolve the issue. For Cisco 5500 Series Adaptive Security Appliance (ASA) versions prior to 8.0(3), update to version 8.0(3) or later to resolve the issue. As a temporary workaround, consider disabling the Time-to-Live (TTL) decrement feature until a patch is available.