Lucene search

[email protected]CVE-2012-4659

HistoryOct 29, 2012 - 8:55 p.m.

CVE-2012-4659

2012-10-2920:55:01

CWE-287

[email protected]

web.nvd.nist.gov

cve-2012-4659

cisco

asa

ssl vpn

denial of service

aaa

nvd

6.9 Medium

AI Score

Confidence

High

7.1 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

0.006 Low

EPSS

Percentile

77.7%

JSON

The AAA functionality in the IPv4 SSL VPN implementations on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 before 8.2(5.30) and 8.3 before 8.3(2.34) allows remote attackers to cause a denial of service (device reload) via a crafted authentication response, aka Bug ID CSCtz04566.

Affected configurations

NVD

Node

ciscoadaptive_security_appliance_softwareMatch8.2

ciscoadaptive_security_appliance_softwareMatch8.2\(1\)

ciscoadaptive_security_appliance_softwareMatch8.2\(2\)

ciscoadaptive_security_appliance_softwareMatch8.2\(3\)

ciscoadaptive_security_appliance_softwareMatch8.2\(3.9\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4.1\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4.4\)

ciscoadaptive_security_appliance_softwareMatch8.2\(5\)

ciscoadaptive_security_appliance_softwareMatch8.3\(1\)

ciscoadaptive_security_appliance_softwareMatch8.3\(2\)

AND

cisco5500_series_adaptive_security_appliance

ciscocatalyst_6500

ciscocatalyst_6503-eMatch-

ciscocatalyst_6504-eMatch-

ciscocatalyst_6506-eMatch-

ciscocatalyst_6509-eMatch-

ciscocatalyst_6509-neb-aMatch-

ciscocatalyst_6509-v-eMatch-

ciscocatalyst_6513Match-

ciscocatalyst_6513-eMatch-

CPENameOperatorVersion
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(1\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(2\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(3\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(3.9\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(4\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(4.1\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(4.4\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.2\(5\)
cisco:adaptive_security_appliance_softwarecisco adaptive security appliance softwareeq8.3\(1\)

CPE	Name	Operator	Version
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(1\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(2\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(3\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(3.9\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(4\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(4.1\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(4.4\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.2\(5\)
cisco:adaptive_security_appliance_software	cisco adaptive security appliance software	eq	8.3\(1\)