Detections
Analytics
Cisco ASA 5500 Series Multiple DoS Vulnerabilities (cisco-sa-20100804-asa)
high Nessus Plugin ID 56045
Language:
Synopsis
The remote security device is missing a vendor-supplied security patch.Description
The remote Cisco ASA is missing a security patch and may be vulnerable to the following issues :- Multiple DoS vulnerabilities in the SunRPC inspection engine that can be triggered by sending unspecified UDP packets.
(CVE-2010-1578, CVE-2010-1579, CVE-2010-1580)
- Multiple TLS DoS vulnerabilities. Devices configured for SSL VPN, TLS Proxy for Encrypted Voice Inspection, or ASDM management connections are vulnerable.
(CVE-2010-1581, CVE-2010-2814, CVE-2010-2815)
- A DoS vulnerability in the SIP inspection engine.
(CVE-2010-2816)
- An unspecified DoS vulnerability in the IKE implementation.
(CVE-2010-2817)
A remote, unauthenticated attacker could cause the device to reload by exploiting any of these issues.
Solution
Apply the appropriate Cisco ASA patch (see plugin output).See Also
Plugin Details
Severity: High
ID: 56045
File Name: cisco-sa-20100804-asa.nasl
Version: 1.10
Type: local
Family: CISCO
Published: 9/1/2011
Updated: 11/15/2018
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 5.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
Vulnerability Information
CPE: cpe:/a:cisco:adaptive_security_appliance_software, cpe:/h:cisco:asa_5500
Required KB Items: Host/Cisco/ASA, Host/Cisco/ASA/model
Exploit Ease: No known exploits are available
Patch Publication Date: 8/4/2010
Vulnerability Publication Date: 8/4/2010
Reference Information
CVE: CVE-2010-1578, CVE-2010-1579, CVE-2010-1580, CVE-2010-1581, CVE-2010-2814, CVE-2010-2815, CVE-2010-2816, CVE-2010-2817
BID: 42187, 42188, 42189, 42190, 42192, 42195, 42196, 42198
CISCO-SA: cisco-sa-20100804-asa
CISCO-BUG-ID: CSCtc77567, CSCtc79922, CSCtc85753, CSCtd32106, CSCtd32627, CSCte46507, CSCtf37506, CSCtf55259