Cisco PIX 500 and ASA 5500 Series Security Appliances 7.2.2, when configured to inspect certain TCP-based protocols, allows remote attackers to cause a denial of service (device reboot) via malformed TCP packets.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Asa_5500 | Cisco | 7.2(2) (including) | 7.2(2) (including) |
| Pix_firewall_software | Cisco | 7.2(2) (including) | 7.2(2) (including) |
References
- http://osvdb.org/33062
- http://secunia.com/advisories/24160
- http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml
- http://www.securityfocus.com/bid/22561
- http://www.securityfocus.com/bid/22562
- http://www.securitytracker.com/id?1017651
- http://www.securitytracker.com/id?1017652
- http://www.vupen.com/english/advisories/2007/0608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32488
- http://osvdb.org/33062
- http://secunia.com/advisories/24160
- http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml
- http://www.securityfocus.com/bid/22561
- http://www.securityfocus.com/bid/22562
- http://www.securitytracker.com/id?1017651
- http://www.securitytracker.com/id?1017652
- http://www.vupen.com/english/advisories/2007/0608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32488