Cisco ASA Syslog Message 305006 Denial of Service Vulnerability
BID:52488
CVE-2012-355 |Info
Cisco ASA Syslog Message 305006 Denial of Service Vulnerability
| Bugtraq ID: | 52488 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2012-0355 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 14 2012 12:00AM |
| Updated: | Mar 14 2012 12:00AM |
| Credit: | Cisco |
| Vulnerable: |
Cisco Catalyst 6500 Series ASA Services Module 8.5(1.2) Cisco Catalyst 6500 Series ASA Services Module 8.5 Cisco Catalyst 6500 Series ASA Services Module 8.4(2.5) Cisco Catalyst 6500 Series ASA Services Module 8.4(2.1) Cisco Catalyst 6500 Series ASA Services Module 8.4 Cisco ASA 5500 Series Adaptive Security Appliance 8.5(1.2) Cisco ASA 5500 Series Adaptive Security Appliance 8.5(1.1) Cisco ASA 5500 Series Adaptive Security Appliance 8.5 Cisco ASA 5500 Series Adaptive Security Appliance 8.4(2.7) Cisco ASA 5500 Series Adaptive Security Appliance 8.4(2.5) Cisco ASA 5500 Series Adaptive Security Appliance 8.4(2.1) Cisco ASA 5500 Series Adaptive Security Appliance 8.4(2) Cisco ASA 5500 Series Adaptive Security Appliance 8.4(1.10) Cisco ASA 5500 Series Adaptive Security Appliance 8.4(1) Cisco ASA 5500 Series Adaptive Security Appliance 8.4 |
| Not Vulnerable: |
Cisco Catalyst 6500 Series ASA Services Module 8.5(1.4) Cisco Catalyst 6500 Series ASA Services Module 8.4(2.11) Cisco ASA 5500 Series Adaptive Security Appliance 8.5(1.4) Cisco ASA 5500 Series Adaptive Security Appliance 8.4(2.11) |
Discussion
Cisco ASA Syslog Message 305006 Denial of Service Vulnerability
Cisco ASA is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users.
The following Cisco products are vulnerable:
Cisco ASA 5500 Series Adaptive Security Appliances.
Cisco Catalyst 6500 Series ASA Services Module.
This issue is being tracked by Cisco Bug ID CSCts39634.
Cisco ASA is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to reload, denying service to legitimate users.
The following Cisco products are vulnerable:
Cisco ASA 5500 Series Adaptive Security Appliances.
Cisco Catalyst 6500 Series ASA Services Module.
This issue is being tracked by Cisco Bug ID CSCts39634.
Exploit / POC
Cisco ASA Syslog Message 305006 Denial of Service Vulnerability
To exploit this issue, attackers can use readily available network utilities.
To exploit this issue, attackers can use readily available network utilities.
Solution / Fix
Cisco ASA Syslog Message 305006 Denial of Service Vulnerability
Solution:
Updates are available. Please see the references for details.
Solution:
Updates are available. Please see the references for details.
References
Cisco ASA Syslog Message 305006 Denial of Service Vulnerability
References:
References: