Vulnerabilities > CVE-2009-4914 - Resource Management Errors vulnerability in Cisco ASA 5580

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

CWE-399

NVD

Published: 2010-06-29

Updated: 2010-06-30

Summary

Memory leak on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attackers to cause a denial of service (memory consumption) via Subject Alternative Name fields in an X.509 certificate, aka Bug ID CSCsq17879.

Vulnerable Configurations

Part	Description	Count
Hardware	Cisco Cisco ASA 5580 *	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.cisco.com/en/US/docs/security/asa/asa81/release/notes/asarn812.html