CVE-2010-4670

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.2(3) and earlier Cisco PIX Security Appliances devices (affected versions not specified)

Description The issue concerns the Neighbor Discovery (ND) protocol implementation in the IPv6 stack, allowing remote attackers to cause a denial of service by sending many Router Advertisement (RA) messages with different source addresses. This can lead to CPU consumption and device hang.

Recommendations For Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.2(3) and earlier: update to a version later than 8.2(3) to resolve the issue. For Cisco PIX Security Appliances devices: At the moment, there is no information about a newer version that contains a fix for this vulnerability.