CVE-2010-0567

2010-02-1917:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

asa

vulnerability

denial of service

remote attack

ike

nvd

cve-2010-0567

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

89.8%

JSON

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.1), 8.1 before 8.1(2.37), and 8.2 before 8.2(1.15); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (active IPsec tunnel loss and prevention of new tunnels) via a malformed IKE message through an existing tunnel to UDP port 4500, aka Bug ID CSCtc47782.

CPENameOperatorVersion
cisco:asa_5500cisco asa 5500eq8.0
cisco:pix_500cisco pix 500eq*
cisco:asa_5500cisco asa 5500eq8.2
cisco:asa_5500cisco asa 5500eq7.2
cisco:asa_5500cisco asa 5500eq7.1
cisco:asa_5500cisco asa 5500eq8.1

CPE	Name	Operator	Version
cisco:asa_5500	cisco asa 5500	eq	8.0
cisco:pix_500	cisco pix 500	eq	*
cisco:asa_5500	cisco asa 5500	eq	8.2
cisco:asa_5500	cisco asa 5500	eq	7.2
cisco:asa_5500	cisco asa 5500	eq	7.1
cisco:asa_5500	cisco asa 5500	eq	8.1