Unrated severityNVD Advisory· Published Apr 9, 2009· Updated Apr 23, 2026

CVE-2009-1160

Description

Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)1, 7.1 before 7.1(2)74, 7.2 before 7.2(4)9, and 8.0 before 8.0(4)5 do not properly implement the implicit deny statement, which might allow remote attackers to successfully send packets that bypass intended access restrictions, aka Bug ID CSCsq91277.

Affected products

Cisco Systems, Inc./Adaptive Security Appliance 55005 versions
cpe:2.3:h:cisco:adaptive_security_appliance_5500:7.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:h:cisco:adaptive_security_appliance_5500:7.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:adaptive_security_appliance_5500:7.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:adaptive_security_appliance_5500:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:adaptive_security_appliance_5500:8.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:adaptive_security_appliance_5500:8.1:*:*:*:*:*:*:*
Cisco Systems, Inc./Pix4 versions
cpe:2.3:h:cisco:pix:7.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:h:cisco:pix:7.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:pix:7.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:pix:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:pix:8.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/en/US/products/products_security_advisory09186a0080a994f6.shtmlnvdPatchVendor Advisory
secunia.com/advisories/34607nvd
www.securityfocus.com/bid/34429nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2009/0981nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000