Vulnerabilities > CVE-2010-0149 - Denial of Service vulnerability in Cisco ASA Appliance TCP Connection Exhaustion

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

NVD

Published: 2010-02-19

Updated: 2017-08-17

Summary

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 before 7.2(4.46), 8.0 before 8.0(4.38), 8.1 before 8.1(2.29), and 8.2 before 8.2(1.5); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (prevention of new connections) via crafted TCP segments during termination of the TCP connection that cause the connection to remain in CLOSEWAIT status, aka "TCP Connection Exhaustion Denial of Service Vulnerability."

Vulnerable Configurations

Part	Description	Count
Hardware	Cisco Cisco ASA 5500 7.1 Cisco ASA 5500 7.2 Cisco ASA 5500 8.0 Cisco ASA 5500 8.1 Cisco ASA 5500 8.2 Cisco PIX 500 *	6

Summary

Vulnerable Configurations

References