CVE Vulnerabilities

CVE-2010-2836

Published: Sep 23, 2010 | Modified: Sep 24, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service (memory consumption) by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID CSCtg21685.

Affected Software

Name Vendor Start Version End Version
Ios Cisco 12.4mra 12.4mra
Ios Cisco 12.4xj 12.4xj
Ios Cisco 12.4xl 12.4xl
Ios Cisco 12.4xm 12.4xm
Ios Cisco 12.4mr 12.4mr
Ios Cisco 12.4xt 12.4xt
Ios Cisco 12.4gc 12.4gc
Ios Cisco 15.1t 15.1t
Ios Cisco 12.4xf 12.4xf
Ios Cisco 12.4xg 12.4xg
Ios Cisco 12.4ya 12.4ya
Ios Cisco 15.0m 15.0m
Ios Cisco 12.4xv 12.4xv
Ios Cisco 12.4xw 12.4xw
Ios Cisco 12.4xz 12.4xz
Ios Cisco 12.4xd 12.4xd
Ios Cisco 12.4xp 12.4xp
Ios Cisco 12.4yd 12.4yd
Ios Cisco 12.4mda 12.4mda
Ios Cisco 12.4xk 12.4xk
Ios Cisco 12.4 12.4
Ios Cisco 12.4sw 12.4sw
Ios Cisco 12.4xa 12.4xa
Ios Cisco 12.4xn 12.4xn
Ios Cisco 12.4xe 12.4xe
Ios Cisco 15.1(1)xb1 15.1(1)xb1
Ios Cisco 12.4yb 12.4yb
Ios Cisco 12.4xb 12.4xb
Ios Cisco 12.4xy 12.4xy
Ios Cisco 12.4xc 12.4xc
Ios Cisco 15.0xa 15.0xa

References