CVE-2011-0393

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 7.0 through 7.0(8.11) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 7.1 through 7.2(5.1) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.0 through 8.0(5.20) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.1 through 8.1(2.48) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.2 through 8.2(3.5) Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.3 through 8.3(2.6) Cisco PIX Security Appliances 500 series devices (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service, resulting in packet buffer exhaustion and device outage, via IPv6 traffic when transparent firewall mode is configured but IPv6 is not configured.

Recommendations For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 7.0, update to version 7.0(8.12) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 7.1 and 7.2, update to version 7.2(5.2) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.0, update to version 8.0(5.21) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.1, update to version 8.1(2.49) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.2, update to version 8.2(3.6) or later. For Cisco Adaptive Security Appliances (ASA) 5500 series devices version 8.3, update to version 8.3(2.7) or later. For Cisco PIX Security Appliances 500 series devices, at the moment, there is no information about a newer version that contains a fix for this vulnerability.