CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
49.5%
Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service (memory consumption) by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID CSCtg21685.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | 12.4 | cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:* |
cisco | ios | 12.4gc | cpe:2.3:o:cisco:ios:12.4gc:*:*:*:*:*:*:* |
cisco | ios | 12.4mda | cpe:2.3:o:cisco:ios:12.4mda:*:*:*:*:*:*:* |
cisco | ios | 12.4mr | cpe:2.3:o:cisco:ios:12.4mr:*:*:*:*:*:*:* |
cisco | ios | 12.4mra | cpe:2.3:o:cisco:ios:12.4mra:*:*:*:*:*:*:* |
cisco | ios | 12.4sw | cpe:2.3:o:cisco:ios:12.4sw:*:*:*:*:*:*:* |
cisco | ios | 12.4xa | cpe:2.3:o:cisco:ios:12.4xa:*:*:*:*:*:*:* |
cisco | ios | 12.4xb | cpe:2.3:o:cisco:ios:12.4xb:*:*:*:*:*:*:* |
cisco | ios | 12.4xc | cpe:2.3:o:cisco:ios:12.4xc:*:*:*:*:*:*:* |
cisco | ios | 12.4xd | cpe:2.3:o:cisco:ios:12.4xd:*:*:*:*:*:*:* |