Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 allows remote authenticated users to cause a denial of service (memory consumption and blank response page) by using the clientless WebVPN feature, aka Bug ID CSCth34278.
References
Link | Resource |
---|---|
http://www.cisco.com/web/software/280775065/45357/ASA-825-Interim-Release-Notes.html | Vendor Advisory |
http://www.cisco.com/web/software/280775065/45357/ASA-825-Interim-Release-Notes.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:39
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.cisco.com/web/software/280775065/45357/ASA-825-Interim-Release-Notes.html - Vendor Advisory |
15 Aug 2023, 14:28
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4:*:*:*:*:*:*:* |
11 Aug 2023, 19:03
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:cisco:adaptive_security_appliance_software:8.3.2:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.3.1:interim:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2.2:interim:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(4.1\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(4.4\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(2\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.3.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(5\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.3\(1\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(3\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(4\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2.2:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2.3:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2.1:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(1\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2\(3.9\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:* |
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2:interim:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3\(2\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3\(1\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.3:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1:interim:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):*:*:*:*:*:*:* |
Information
Published : 2012-08-06 17:55
Updated : 2024-11-21 01:39
NVD link : CVE-2012-2474
Mitre link : CVE-2012-2474
CVE.ORG link : CVE-2012-2474
JSON object : View
Products Affected
cisco
- adaptive_security_appliance_software
- 5500_series_adaptive_security_appliance
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor