Cisco PIX and Cisco ASA Multiple Denial of Service and Information Disclosure Vulnerabilities

BID:30998

Info

Cisco PIX and Cisco ASA Multiple Denial of Service and Information Disclosure Vulnerabilities

Bugtraq ID: 30998
Class: Unknown
CVE: CVE-2008-2732
CVE-2008-2733
CVE-2008-2734
CVE-2008-2735
CVE-2008-2736
Remote: Yes
Local: No
Published: Sep 03 2008 12:00AM
Updated: Sep 03 2008 07:35PM
Credit: Reported by the vendor
Vulnerable: Cisco PIX/ASA 7.2.2
Cisco PIX/ASA 7.0.4 .3
Cisco PIX/ASA 7.0.4
Cisco PIX/ASA 7.0.1 .4
Cisco PIX/ASA 7.0
Cisco PIX/ASA 8.1(1)2
Cisco PIX/ASA 8.1(1)1
Cisco PIX/ASA 8.1
Cisco PIX/ASA 8.0(3)9
Cisco PIX/ASA 8.0(3)10
Cisco PIX/ASA 8.0(3)
Cisco PIX/ASA 8.0(2)17
Cisco PIX/ASA 8.0(2)
Cisco PIX/ASA 8.0
Cisco PIX/ASA 8.0
Cisco PIX/ASA 7.2.(2.8)
Cisco PIX/ASA 7.2.(2.7)
Cisco PIX/ASA 7.2.(2.19)
Cisco PIX/ASA 7.2.(2.17)
Cisco PIX/ASA 7.2.(2.16)
Cisco PIX/ASA 7.2(4)
Cisco PIX/ASA 7.2(3)2
Cisco PIX/ASA 7.2(3)006
Cisco PIX/ASA 7.2(2.24)
Cisco PIX/ASA 7.2(2.15)
Cisco PIX/ASA 7.2(2.14)
Cisco PIX/ASA 7.2(2.10)
Cisco PIX/ASA 7.2(2)
Cisco PIX/ASA 7.2(1.22)
Cisco PIX/ASA 7.2(1)
Cisco PIX/ASA 7.2
Cisco PIX/ASA 7.1.(2.49)
Cisco PIX/ASA 7.1.(2.48)
Cisco PIX/ASA 7.1(2.5)
Cisco PIX/ASA 7.1(2.27)
Cisco PIX/ASA 7.1(2)70
Cisco PIX/ASA 7.1(2)
Cisco PIX/ASA 7.1 (2.55)
Cisco PIX/ASA 7.1
Cisco PIX/ASA 7.0
Not Vulnerable: Cisco PIX/ASA 8.1(1)5
Cisco PIX/ASA 8.1(1)4
Cisco PIX/ASA 8.0(3)15
Cisco PIX/ASA 8.0(3)14
Cisco PIX/ASA 7.2(4)7
Cisco PIX/ASA 7.2(4)2
Cisco PIX/ASA 7.1(2)71
Cisco PIX/ASA 7.0(7)16

Discussion

Cisco PIX and Cisco ASA Multiple Denial of Service and Information Disclosure Vulnerabilities

Cisco PIX and ASA are prone to multiple denial-of-service vulnerabilities and an information-disclosure vulnerability.

An attacker can exploit these issues to obtain sensitive information or cause the affected devices to reload.

Exploit / POC

Cisco PIX and Cisco ASA Multiple Denial of Service and Information Disclosure Vulnerabilities

To exploit these issues, attackers can use readily available network utilities.

Solution / Fix

Cisco PIX and Cisco ASA Multiple Denial of Service and Information Disclosure Vulnerabilities

Solution:
The vendor has released updates and an advisory. Please see the referenced advisory for more information.

References

Cisco PIX and Cisco ASA Multiple Denial of Service and Information Disclosure Vulnerabilities

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report