PT-2008-5171 · Cisco · Cisco Asa 5500 Series+2
Published
2008-10-22
·
Updated
2017-09-29
·
CVE-2008-3817
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Adaptive Security Appliances (ASA) 5500 Series versions 8.0 before 8.0(4)
Cisco Adaptive Security Appliances (ASA) 5500 Series versions 8.1 before 8.1(2)
Cisco PIX Security Appliances versions 8.0 before 8.0(4)
Cisco PIX Security Appliances versions 8.1 before 8.1(2)
Description
A memory leak in the affected devices allows remote attackers to cause a denial of service via an unspecified sequence of packets, related to the initialization code for the hardware crypto accelerator. Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances.
Recommendations
For Cisco Adaptive Security Appliances (ASA) 5500 Series version 8.0, update to version 8.0(4) or later.
For Cisco Adaptive Security Appliances (ASA) 5500 Series version 8.1, update to version 8.1(2) or later.
For Cisco PIX Security Appliances version 8.0, update to version 8.0(4) or later.
For Cisco PIX Security Appliances version 8.1, update to version 8.1(2) or later.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Asa 5500 Series
Cisco Asa
Cisco Pix Security Appliances