CVE-2012-2474

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) 5500 series devices versions 8.2 through 8.4

Description The issue allows remote authenticated users to cause a denial of service (memory consumption and blank response page) by using the clientless WebVPN feature. This could lead to a denial of service (DoS) condition.

Recommendations For versions 8.2 through 8.4, consider disabling the clientless WebVPN feature as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.