11 matches found
CVE-2012-0353
CVE-2012-0353 affects Cisco ASA 5500 series (and ASA Services Module in Catalyst 6500) with ASA software versions 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.5), 8.3 before 8.3(2.22), 8.4 before 8.4(2.1), and 8.5 before 8.5(1.2). The UDP inspection engine fails to handle flows pr...
CVE-2012-4661
CVE-2012-4661 : A stack-based buffer overflow in Cisco’s DCERPC inspection engine affects ASA 5500 series (and ASASM in Catalyst 6500) and FWSM, allowing an unauthenticated remote attacker to execute arbitrary code via a crafted DCERPC packet. Affected versions include ASA 8.3 before 8.3(2.34), 8...
CVE-2012-4662
The CVE-2012-4662 issue affects Cisco ASA 5500 series (and ASA ASASM on Catalyst 6500) and FWSM 4.1 on 6500/7600 platforms. The root cause is a flaw in the DCERPC inspection engine that allows remote, unauthenticated adversaries to trigger a denial of service resulting in a device reload via a cr...
CVE-2012-0354
CVE-2012-0354 affects Cisco ASA 5500 Series and ASA Services Module (ASASM) on Catalyst 6500. The Threat Detection feature, when configured with Scanning Threat and shun enabled, can be triggered by IPv4/IPv6 traffic to cause a device reload (DoS). Affected software versions and fixes per Cisco a...
CVE-2012-3058
CVE-2012-3058 affects Cisco ASA 5500 series and ASA Services Module (ASASM) in Cisco Catalyst 6500 switches. Vulnerable software versions are ASA 8.4 prior to 8.4(4.1), 8.5 prior to 8.5(1.11), and 8.6 prior to 8.6(1.3). The issue allows remote attackers to cause a denial of service (device reload...
CVE-2012-0356
CVE-2012-0356 affects Cisco ASA 5500 series and ASASM, plus the FWSM on Catalyst 6500, when multicast routing is enabled. The vulnerability arises from improper handling of PIM messages, potentially allowing a remote attacker to trigger a device reload. Affected software ranges include ASA/ASASM ...
CVE-2012-4643
CVE-2012-4643 affects Cisco ASA 5500 Series and ASA Services Module (ASASM) in Catalyst 6500; the DHCP server does not properly allocate memory for DHCP packets, leading to a denial-of-service via crafted IPv4 packets and a device reload (Bug CSCtw84068). Affected software versions are 7.0–7.2(5....
CVE-2012-4663
CVE-2012-4663 covers a DCERPC inspection engine vulnerability in Cisco ASA 5500 series devices and the ASASM/ FWSM modules. The issue allows remote, unauthenticated attackers to trigger a denial of service (device reload) by sending a crafted DCERPC packet. Affected products and versions include:...
CVE-2012-4660
The issue CVE-2012-4660 affects Cisco ASA 5500 series (and ASASM in Catalyst 6500) SIP inspection engine. Versions 8.2 before 8.2(5.17), 8.3 before 8.3(2.28), 8.4 before 8.4(2.13), 8.5 before 8.5(1.4), and 8.6 before 8.6(1.5) are vulnerable to remote, unauthenticated denial of service (device rel...
CVE-2012-4659
The CVE-2012-4659 issue affects Cisco ASA 5500 series and ASASM on Catalyst 6500, where the AAA IPv4 SSL VPN authentication path can be abused by remote attackers to trigger a device reload (DoS) via a crafted authentication response. Affected software versions are 8.2 before 8.2(5.30) and 8.3 be...
CVE-2012-0355
CVE-2012-0355 affects Cisco ASA/ASASM: software versions 8.4 before 8.4(2.11) and 8.5 before 8.5(1.4) may allow a remote attacker to trigger a denial of service (device reload) by IPv4 or IPv6 packets that generate syslog message 305006. Root cause is the handling of syslog-triggered events leadi...