CVE-2010-0566

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(4.44), 8.1 before 8.1(2.35), and 8.2 before 8.2(1.10) allows remote attackers to cause a denial of service (device reload) via a malformed TCP segment when certain NAT translation and Cisco AIP-SSM configurations are used, aka Bug ID CSCtb37219.

CVSS v2.0 7.1 HIGH

7.1^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 8.6 / Impact : 6.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/62431
http://secunia.com/advisories/38618	Vendor Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1910c.shtml	Vendor Advisory
http://www.securityfocus.com/bid/38278
http://www.securitytracker.com/id?1023612
http://www.vupen.com/english/advisories/2010/0415	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/56340

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:cisco:asa_5500:7.1:::::::*
	cpe:2.3:h:cisco:asa_5500:7.2:::::::*
	cpe:2.3:h:cisco:asa_5500:8.0:::::::*
	cpe:2.3:h:cisco:asa_5500:8.1:::::::*
	cpe:2.3:h:cisco:asa_5500:8.2:::::::*
	cpe:2.3:h:cisco:pix_500::::::::

History

No history.

Information

Published : 2010-02-19 17:30

Updated : 2024-02-28 11:41

NVD link : CVE-2010-0566

Mitre link : CVE-2010-0566

CVE.ORG link : CVE-2010-0566

JSON object : View

Products Affected

cisco

pix_500
asa_5500

CWE

NVD-CWE-noinfo

{"id": "CVE-2010-0566", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-02-19T17:30:00.880", "references": [{"url": "http://osvdb.org/62431", "source": "ykramarz@cisco.com"}, {"url": "http://secunia.com/advisories/38618", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1910c.shtml", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securityfocus.com/bid/38278", "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id?1023612", "source": "ykramarz@cisco.com"}, {"url": "http://www.vupen.com/english/advisories/2010/0415", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56340", "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(4.44), 8.1 before 8.1(2.35), and 8.2 before 8.2(1.10) allows remote attackers to cause a denial of service (device reload) via a malformed TCP segment when certain NAT translation and Cisco AIP-SSM configurations are used, aka Bug ID CSCtb37219."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Cisco ASA 5500 Series Adaptive Security Appliance v7.0 anterior a v7.0(8.10), v7.2 anterior a v7.2(4.45), v8.0 anterior a v8.0(4.44), 8.1 anterior a v8.1(2.35), y v8.2 anterior a v8.2(1.10) permite a atacantes remotos causar una denegaci\u00f3n de servicio (reinicio del dispositivo) mediante un segmento TCP incorrecto cuando se utilizan una traducci\u00f3n NAT determinada y las configuraciones de Cisco AIP-SSM, tambi\u00e9n conocido como Bug ID CSCtb37219."}], "lastModified": "2017-08-17T01:32:01.803", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:asa_5500:7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "856917BD-179B-4C43-8EA6-034254720B63"}, {"criteria": "cpe:2.3:h:cisco:asa_5500:7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "800D4D6A-0814-4D83-8E66-945687AE58D0"}, {"criteria": "cpe:2.3:h:cisco:asa_5500:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0810F1FB-120C-4F4C-A9A7-6AA76227A4AD"}, {"criteria": "cpe:2.3:h:cisco:asa_5500:8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F50FA336-1365-4449-86B6-855C06E4F516"}, {"criteria": "cpe:2.3:h:cisco:asa_5500:8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3CBF542E-2454-4F54-93F6-8D003E06F9D7"}, {"criteria": "cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2706D3BA-37A2-4D71-94DD-5386F5C94374"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}