CVE-2008-2734

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) 5500 devices versions 7.2 before 7.2(4)2 Cisco Adaptive Security Appliance (ASA) 5500 devices versions 8.0 before 8.0(3)14 Cisco Adaptive Security Appliance (ASA) 5500 devices versions 8.1 before 8.1(1)4

Description A memory leak in the crypto functionality of Cisco Adaptive Security Appliance (ASA) 5500 devices, when configured as a clientless SSL VPN endpoint, allows remote attackers to cause a denial of service (memory consumption and VPN hang) via a crafted SSL or HTTP packet. Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances that may result in a reload of the device or disclosure of confidential information.

Recommendations For versions 7.2 before 7.2(4)2, update to version 7.2(4)2 or later to resolve the issue. For versions 8.0 before 8.0(3)14, update to version 8.0(3)14 or later to resolve the issue. For versions 8.1 before 8.1(1)4, update to version 8.1(1)4 or later to resolve the issue.