VYPR

Cisco Adaptive Security Appliance

by Cisco Systems, Inc.

Cisco's stateful firewall + VPN appliance line.

applianceWebsiteDocs

CVEs (230)

  • CVE-2007-5568Oct 18, 2007
    risk 0.00cvss epss 0.02

    Cisco PIX and ASA appliances with 7.0 through 8.0 software, and Cisco Firewall Services Module (FWSM) 3.1(5) and earlier, allow remote attackers to cause a denial of service (device reload) via a crafted MGCP packet, aka CSCsi90468 (appliance) and CSCsi00694 (FWSM).

  • CVE-2007-5569Oct 18, 2007
    risk 0.00cvss epss 0.02

    Cisco PIX and ASA appliances with 7.1 and 7.2 software, when configured for TLS sessions to the device, allow remote attackers to cause a denial of service (device reload) via a crafted TLS packet, aka CSCsg43276 and CSCsh97120.

  • CVE-2007-2464May 2, 2007
    risk 0.00cvss epss 0.03

    Race condition in Cisco Adaptive Security Appliance (ASA) and PIX 7.1 before 7.1(2)49 and 7.2 before 7.2(2)19, when using "clientless SSL VPNs," allows remote attackers to cause a denial of service (device reload) via "non-standard SSL sessions."

  • CVE-2007-2461May 2, 2007
    risk 0.00cvss epss 0.04

    The DHCP relay agent in Cisco Adaptive Security Appliance (ASA) and PIX 7.2 allows remote attackers to cause a denial of service (dropped packets) via a DHCPREQUEST or DHCPINFORM message that causes multiple DHCPACK messages to be sent from DHCP servers to the agent, which…

  • CVE-2007-2463May 2, 2007
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Cisco Adaptive Security Appliance (ASA) and PIX 7.1 before 7.1(2)49 and 7.2 before 7.2(2)17 allows remote attackers to cause a denial of service (device reload) via unknown vectors related to VPN connection termination and password expiry.

  • CVE-2006-4312Aug 23, 2006
    risk 0.00cvss epss 0.00

    Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to 3.1(1.6), causes the EXEC password, local user passwords, and the enable…

  • CVE-2006-3906Jul 27, 2006
    risk 0.00cvss epss 0.07

    Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of IKE Phase-1 packets that exceed the session expiration rate. NOTE: it…

  • CVE-2005-4499Dec 22, 2005
    risk 0.00cvss epss 0.02

    The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote attackers…

  • CVE-2005-3788Nov 24, 2005
    risk 0.00cvss epss 0.02

    Race condition in Cisco Adaptive Security Appliance (ASA) 7.0(0), 7.0(2), and 7.0(4), when running with an Active/Standby configuration and when the failover LAN interface fails, allows remote attackers to cause a denial of service (standby firewall failure) by sending spoofed…

  • CVE-2005-3669Nov 18, 2005
    risk 0.00cvss epss 0.05

    Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for…

Page 12 of 12