CVE-2009-1156

2009-04-0915:08:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

asa

ssl vpn

asdm

vulnerability

denial of service

cve-2009-1156

6.9 Medium

AI Score

Confidence

Low

5.7 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:M/Au:N/C:N/I:N/A:C

0.012 Low

EPSS

Percentile

84.9%

JSON

Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series devices 8.0 before 8.0(4)25 and 8.1 before 8.1(2)15, when an SSL VPN or ASDM access is configured, allows remote attackers to cause a denial of service (device reload) via a crafted (1) SSL or (2) HTTP packet.

CPENameOperatorVersion
cisco:pixcisco pixeq8.1
cisco:adaptive_security_appliance_5500cisco adaptive security appliance 5500eq8.1
cisco:pixcisco pixeq8.0
cisco:adaptive_security_appliance_5500cisco adaptive security appliance 5500eq8.0

CPE	Name	Operator	Version
cisco:pix	cisco pix	eq	8.1
cisco:adaptive_security_appliance_5500	cisco adaptive security appliance 5500	eq	8.1
cisco:pix	cisco pix	eq	8.0
cisco:adaptive_security_appliance_5500	cisco adaptive security appliance 5500	eq	8.0