Lucene search

PRIOn knowledge basePRION:CVE-2010-0149

HistoryFeb 19, 2010 - 5:30 p.m.

Denial of service

2010-02-1917:30:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.024 Low

EPSS

Percentile

90.0%

JSON

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 before 7.2(4.46), 8.0 before 8.0(4.38), 8.1 before 8.1(2.29), and 8.2 before 8.2(1.5); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (prevention of new connections) via crafted TCP segments during termination of the TCP connection that cause the connection to remain in CLOSEWAIT status, aka “TCP Connection Exhaustion Denial of Service Vulnerability.”

CPENameOperatorVersion
asa_5500eq8.0
asa_5500eq8.2
asa_5500eq7.2
asa_5500eq7.1
asa_5500eq8.1

Name	Operator	Version
asa_5500	eq	8.0
asa_5500	eq	8.2
asa_5500	eq	7.2
asa_5500	eq	7.1
asa_5500	eq	8.1

References

osvdb.org/62433

secunia.com/advisories/38618

secunia.com/advisories/38636

www.cisco.com/en/US/products/products_security_advisory09186a0080b1910c.shtml

www.securityfocus.com/bid/38275

www.securitytracker.com/id?1023612

www.vupen.com/english/advisories/2010/0415

exchange.xforce.ibmcloud.com/vulnerabilities/56336