CVE-2008-3817

2008-10-2322:00:00

CWE-399

[email protected]

web.nvd.nist.gov

cisco

asa

pix

security

denial of service

memory leak

vulnerability

nvd

cve-2008-3817

7.1 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.021 Low

EPSS

Percentile

89.1%

JSON

Memory leak in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 8.0 before 8.0(4) and 8.1 before 8.1(2) allows remote attackers to cause a denial of service (memory consumption) via an unspecified sequence of packets, related to the “initialization code for the hardware crypto accelerator.”

CPENameOperatorVersion
cisco:pix_security_appliancecisco pix security applianceeq8.1
cisco:adaptive_security_appliance_5500_seriescisco adaptive security appliance 5500 serieseq*
cisco:pix_security_appliancecisco pix security applianceeq8.0

CPE	Name	Operator	Version
cisco:pix_security_appliance	cisco pix security appliance	eq	8.1
cisco:adaptive_security_appliance_5500_series	cisco adaptive security appliance 5500 series	eq	*
cisco:pix_security_appliance	cisco pix security appliance	eq	8.0