8 matches found
CVE-2010-4670
CVE-2010-4670 describes a DoS in the IPv6 Neighbor Discovery implementation on Cisco ASA 5500 series (software 8.2(3) and earlier) and Cisco PIX appliances. The vulnerability is triggered by malicious Router Advertisement floods from varying source addresses, exploiting the ND handling to cause C...
CVE-2008-2058
CVE-2008-2058 affects Cisco ASA/PIX 7.2.x before 7.2(3)2 and 8.0.x before 8.0(2)17. The DoS is triggered by a port scan to TCP port 443, causing a device reload. The issue is one of several vulnerabilities described in Cisco’s ASA/PIX advisory; exploitation leads to a reload/DoS on affected devic...
CVE-2008-2055
The CVE-2008-2055 issue affects Cisco ASA/PIX IOS on 7.1.x before 7.1(2)70, 7.2.x before 7.2(4), and 8.0.x before 8.0(3)10. It permits remote attackers to cause a denial-of-service by sending crafted TCP ACK packets to the device interface. Cisco’s advisory lists the first fixed software releases...
CVE-2008-2056
The CVE-2008-2056 issue affects Cisco ASA/PIX security appliances (ASA 5500 series) where a crafted TLS packet sent to the device interface can cause a DoS (device reload). Affected: 8.0.x before 8.0(3)9 and 8.1.x before 8.1(1)1. Remediation: upgrade to 8.0(3)9 or later (8.0.x) or 8.1(1)1 or late...
CVE-2008-3816
CVE-2008-3816 is a denial-of-service vulnerability in Cisco ASA 5500 Series and Cisco PIX Security Appliances (versions 7.2(4)9/10) where specially crafted IPv6 packets destined to the device can cause a reload. The issue is triggered when IPv6 is configured on devices with these releases; IPv6 t...
CVE-2008-3817
Memory leak in Cisco ASA 5500 Series and Cisco PIX (software 8.0 before 8.0(4) and 8.1 before 8.1(2)) triggered by the hardware crypto accelerator initialization code can be exploited by a crafted sequence of packets to cause a DoS via memory exhaustion. The issue is specific to crypto accelerato...
CVE-2008-2059
Cisco ASA/PIX security appliances with software version 8.0.x before 8.0(3)9 are vulnerable to CVE-2008-2059, a control-plane ACL bypass vulnerability. The advisory describes multiple independent issues and, for this CVE, enabling bypass via unknown vectors could allow malicious traffic to reach ...
CVE-2008-2057
CVE-2008-2057 covers a denial-of-service vulnerability in the Instant Messenger (IM) inspection engine of Cisco ASA/PIX devices. A crafted packet can trigger a DoS condition on affected appliances. The entry explicitly maps to Cisco advisories documenting an IM inspection vulnerability (CVE-2008-...