Lucene search
HistorySep 23, 2010 - 7:00 p.m.
CVE-2010-2836
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
49.5%
Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service (memory consumption) by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID CSCtg21685.
Affected configurations
Node
ciscoiosMatch12.4
ORciscoiosMatch12.4gc
ORciscoiosMatch12.4mda
ORciscoiosMatch12.4mr
ORciscoiosMatch12.4mra
ORciscoiosMatch12.4sw
ORciscoiosMatch12.4xa
ORciscoiosMatch12.4xb
ORciscoiosMatch12.4xc
ORciscoiosMatch12.4xd
ORciscoiosMatch12.4xe
ORciscoiosMatch12.4xf
ORciscoiosMatch12.4xg
ORciscoiosMatch12.4xj
ORciscoiosMatch12.4xk
ORciscoiosMatch12.4xl
ORciscoiosMatch12.4xm
ORciscoiosMatch12.4xn
ORciscoiosMatch12.4xp
ORciscoiosMatch12.4xt
ORciscoiosMatch12.4xv
ORciscoiosMatch12.4xw
ORciscoiosMatch12.4xy
ORciscoiosMatch12.4xz
ORciscoiosMatch12.4ya
ORciscoiosMatch12.4yb
ORciscoiosMatch12.4yd
ORciscoiosMatch15.0m
ORciscoiosMatch15.0xa
ORciscoiosMatch15.1\(1\)xb1
ORciscoiosMatch15.1t
Related
cve
cve
CVE-2010-2836
2022-10-03 16:21:09
prion
prion
Memory corruption
2010-09-23 19:00:00
securityvulns
securityvulns
Cisco Security Advisory: Cisco IOS SSL VPN Vulnerability
2010-09-24 00:00:00
Cisco IOS multiple security vulnerabilities
2010-09-24 00:00:00
nessus
nessus
Cisco IOS SSL VPN Vulnerability (cisco-sa-20100922-sslvpn)
2012-01-10 00:00:00
cisco
cisco
Cisco IOS SSL VPN Vulnerability
2010-09-22 16:00:00
cvelist
cvelist
CVE-2010-2836
2022-10-03 16:21:09
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
49.5%
Related for NVD:CVE-2010-2836