Design/Logic Flaw

2015-04-1301:59:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.1%

JSON

The DNS implementation in Cisco Adaptive Security Appliance (ASA) Software 7.2 before 7.2(5.16), 8.2 before 8.2(5.57), 8.3 before 8.3(2.44), 8.4 before 8.4(7.28), 8.5 before 8.5(1.24), 8.6 before 8.6(1.17), 8.7 before 8.7(1.16), 9.0 before 9.0(4.33), 9.1 before 9.1(6.1), 9.2 before 9.2(3.4), and 9.3 before 9.3(3) allows man-in-the-middle attackers to cause a denial of service (memory consumption or device outage) by triggering outbound DNS queries and then sending crafted responses to these queries, aka Bug ID CSCuq77655.

CPENameOperatorVersion
adaptive_security_appliance_softwareeq9.3.2
adaptive_security_appliance_softwareeq9.1.1.4
adaptive_security_appliance_softwareeq9.1.4
adaptive_security_appliance_softwareeq8.6.1.12
adaptive_security_appliance_softwareeq9.2.2.7
adaptive_security_appliance_softwareeq9.1.5.21
adaptive_security_appliance_softwareeq9.1.3
adaptive_security_appliance_softwareeq9.1.2
adaptive_security_appliance_softwareeq9.2.3
adaptive_security_appliance_softwareeq9.3.1.1

Name	Operator	Version
adaptive_security_appliance_software	eq	9.3.2
adaptive_security_appliance_software	eq	9.1.1.4
adaptive_security_appliance_software	eq	9.1.4
adaptive_security_appliance_software	eq	8.6.1.12
adaptive_security_appliance_software	eq	9.2.2.7
adaptive_security_appliance_software	eq	9.1.5.21
adaptive_security_appliance_software	eq	9.1.3
adaptive_security_appliance_software	eq	9.1.2
adaptive_security_appliance_software	eq	9.2.3
adaptive_security_appliance_software	eq	9.3.1.1