CVE-2014-3407

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 9.3(.2) and earlier

Description The issue is related to the SSL VPN implementation, which does not properly allocate memory blocks during HTTP packet handling. This allows remote attackers to cause a denial of service (memory consumption) via crafted packets.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software versions 9.3(.2) and earlier, consider applying a patch or update to resolve the issue, as the current version does not properly handle memory allocation during HTTP packet handling. At the moment, there is no information about a newer version that contains a fix for this vulnerability.