Vulnerabilities > CVE-2011-0393 - Resource Management Errors vulnerability in Cisco products

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cisco

CWE-399

nessus

NVD

Published: 2011-02-25

Updated: 2024-11-21

Summary

Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.12), 7.1 and 7.2 before 7.2(5.2), 8.0 before 8.0(5.21), 8.1 before 8.1(2.49), 8.2 before 8.2(3.6), and 8.3 before 8.3(2.7) and Cisco PIX Security Appliances 500 series devices, when transparent firewall mode is configured but IPv6 is not configured, allow remote attackers to cause a denial of service (packet buffer exhaustion and device outage) via IPv6 traffic, aka Bug ID CSCtj04707.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco Adaptive Security Appliance Software - Cisco Adaptive Security Appliance Software 6.2.3 Cisco Adaptive Security Appliance Software 6.2.3.1 Cisco Adaptive Security Appliance Software 6.2.3.2 Cisco Adaptive Security Appliance Software 6.2.3.3 Cisco Adaptive Security Appliance Software 6.2.3.4 Cisco Adaptive Security Appliance Software 6.2.3.5 Cisco Adaptive Security Appliance Software 6.2.3.6 Cisco Adaptive Security Appliance Software 6.2.3.7 Cisco Adaptive Security Appliance Software 6.2.3.8 Cisco Adaptive Security Appliance Software 6.2.3.9 Cisco Adaptive Security Appliance Software 6.2.3.10 Cisco Adaptive Security Appliance Software 6.2.3.11 Cisco Adaptive Security Appliance Software 6.2.3.12 Cisco Adaptive Security Appliance Software 6.2.3.13 Cisco Adaptive Security Appliance Software 6.2.3.14 Cisco Adaptive Security Appliance Software 6.2.3.15 Cisco Adaptive Security Appliance Software 6.2.3.16 Cisco Adaptive Security Appliance Software 6.2.3.17 Cisco Adaptive Security Appliance Software 6.2.3.18 Cisco Adaptive Security Appliance Software 6.3.1 Cisco Adaptive Security Appliance Software 6.4.0 Cisco Adaptive Security Appliance Software 6.4.0.1 Cisco Adaptive Security Appliance Software 6.4.0.2 Cisco Adaptive Security Appliance Software 6.4.0.3 Cisco Adaptive Security Appliance Software 6.4.0.4 Cisco Adaptive Security Appliance Software 6.4.0.5 Cisco Adaptive Security Appliance Software 6.4.0.6 Cisco Adaptive Security Appliance Software 6.4.0.7 Cisco Adaptive Security Appliance Software 6.4.0.8 Cisco Adaptive Security Appliance Software 6.4.0.9 Cisco Adaptive Security Appliance Software 6.4.0.10 Cisco Adaptive Security Appliance Software 6.4.0.11 Cisco Adaptive Security Appliance Software 6.4.0.12 Cisco Adaptive Security Appliance Software 6.4.0.13 Cisco Adaptive Security Appliance Software 6.4.0.14 Cisco Adaptive Security Appliance Software 6.4.0.15 Cisco Adaptive Security Appliance Software 6.4.0.16 Cisco Adaptive Security Appliance Software 6.6.0 Cisco Adaptive Security Appliance Software 6.6.0.1 Cisco Adaptive Security Appliance Software 6.6.1 Cisco Adaptive Security Appliance Software 6.6.3 Cisco Adaptive Security Appliance Software 6.6.4 Cisco Adaptive Security Appliance Software 6.6.5 Cisco Adaptive Security Appliance Software 6.6.5.1 Cisco Adaptive Security Appliance Software 6.6.5.2 Cisco Adaptive Security Appliance Software 6.6.7 Cisco Adaptive Security Appliance Software 6.6.7.1 Cisco Adaptive Security Appliance Software 6.7.0 Cisco Adaptive Security Appliance Software 6.7.0.1 Cisco Adaptive Security Appliance Software 6.7.0.2 Cisco Adaptive Security Appliance Software 6.7.0.3 Cisco Adaptive Security Appliance Software 7.0 Cisco Adaptive Security Appliance Software 7.0$0$ Cisco Adaptive Security Appliance Software 7.0$1$ Cisco Adaptive Security Appliance Software 7.0$2$ Cisco Adaptive Security Appliance Software 7.0$4$ Cisco Adaptive Security Appliance Software 7.0$5$ Cisco Adaptive Security Appliance Software 7.0$5.2$ Cisco Adaptive Security Appliance Software 7.0$6$ Cisco Adaptive Security Appliance Software 7.0$6.7$ Cisco Adaptive Security Appliance Software 7.0$7$ Cisco Adaptive Security Appliance Software 7.0$8$ Cisco Adaptive Security Appliance Software 7.0.0 Cisco Adaptive Security Appliance Software 7.0.0.1 Cisco Adaptive Security Appliance Software 7.0.1 Cisco Adaptive Security Appliance Software 7.0.1.1 Cisco Adaptive Security Appliance Software 7.0.1.4 Cisco Adaptive Security Appliance Software 7.0.2 Cisco Adaptive Security Appliance Software 7.0.2.1 Cisco Adaptive Security Appliance Software 7.0.3 Cisco Adaptive Security Appliance Software 7.0.4 Cisco Adaptive Security Appliance Software 7.0.4.2 Cisco Adaptive Security Appliance Software 7.0.4.3 Cisco Adaptive Security Appliance Software 7.0.5 Cisco Adaptive Security Appliance Software 7.0.5.12 Cisco Adaptive Security Appliance Software 7.0.6 Cisco Adaptive Security Appliance Software 7.0.6.4 Cisco Adaptive Security Appliance Software 7.0.6.8 Cisco Adaptive Security Appliance Software 7.0.6.18 Cisco Adaptive Security Appliance Software 7.0.6.22 Cisco Adaptive Security Appliance Software 7.0.6.26 Cisco Adaptive Security Appliance Software 7.0.6.29 Cisco Adaptive Security Appliance Software 7.0.6.32 Cisco Adaptive Security Appliance Software 7.0.7 Cisco Adaptive Security Appliance Software 7.0.7.1 Cisco Adaptive Security Appliance Software 7.0.7.4 Cisco Adaptive Security Appliance Software 7.0.7.9 Cisco Adaptive Security Appliance Software 7.0.7.12 Cisco Adaptive Security Appliance Software 7.0.8 Cisco Adaptive Security Appliance Software 7.0.8.2 Cisco Adaptive Security Appliance Software 7.0.8.8 Cisco Adaptive Security Appliance Software 7.0.8.12 Cisco Adaptive Security Appliance Software 7.0.8.13 Cisco Adaptive Security Appliance Software 7.1 Cisco Adaptive Security Appliance Software 7.1$2$ Cisco Adaptive Security Appliance Software 7.1$2.5$ Cisco Adaptive Security Appliance Software 7.1$2.27$ Cisco Adaptive Security Appliance Software 7.1$2.48$ Cisco Adaptive Security Appliance Software 7.1$2.49$ Cisco Adaptive Security Appliance Software 7.1$5$ Cisco Adaptive Security Appliance Software 7.1.0 Cisco Adaptive Security Appliance Software 7.1.0.1 Cisco Adaptive Security Appliance Software 7.1.0.2 Cisco Adaptive Security Appliance Software 7.1.0.3 Cisco Adaptive Security Appliance Software 7.1.1 Cisco Adaptive Security Appliance Software 7.1.2 Cisco Adaptive Security Appliance Software 7.1.2.16 Cisco Adaptive Security Appliance Software 7.1.2.20 Cisco Adaptive Security Appliance Software 7.1.2.24 Cisco Adaptive Security Appliance Software 7.1.2.28 Cisco Adaptive Security Appliance Software 7.1.2.38 Cisco Adaptive Security Appliance Software 7.1.2.42 Cisco Adaptive Security Appliance Software 7.1.2.46 Cisco Adaptive Security Appliance Software 7.1.2.49 Cisco Adaptive Security Appliance Software 7.1.2.53 Cisco Adaptive Security Appliance Software 7.1.2.61 Cisco Adaptive Security Appliance Software 7.1.2.64 Cisco Adaptive Security Appliance Software 7.1.2.72 Cisco Adaptive Security Appliance Software 7.1.2.81 Cisco Adaptive Security Appliance Software 7.2 Cisco Adaptive Security Appliance Software 7.2$1$ Cisco Adaptive Security Appliance Software 7.2$1.22$ Cisco Adaptive Security Appliance Software 7.2$2$ Cisco Adaptive Security Appliance Software 7.2$2.5$ Cisco Adaptive Security Appliance Software 7.2$2.7$ Cisco Adaptive Security Appliance Software 7.2$2.8$ Cisco Adaptive Security Appliance Software 7.2$2.10$ Cisco Adaptive Security Appliance Software 7.2$2.14$ Cisco Adaptive Security Appliance Software 7.2$2.15$ Cisco Adaptive Security Appliance Software 7.2$2.16$ Cisco Adaptive Security Appliance Software 7.2$2.17$ Cisco Adaptive Security Appliance Software 7.2$2.18$ Cisco Adaptive Security Appliance Software 7.2$2.19$ Cisco Adaptive Security Appliance Software 7.2$2.48$ Cisco Adaptive Security Appliance Software 7.2$3$ Cisco Adaptive Security Appliance Software 7.2$3$6 Cisco Adaptive Security Appliance Software 7.2$4$ Cisco Adaptive Security Appliance Software 7.2$5$ Cisco Adaptive Security Appliance Software 7.2.0 Cisco Adaptive Security Appliance Software 7.2.0.1 Cisco Adaptive Security Appliance Software 7.2.1 Cisco Adaptive Security Appliance Software 7.2.1.9 Cisco Adaptive Security Appliance Software 7.2.1.13 Cisco Adaptive Security Appliance Software 7.2.1.19 Cisco Adaptive Security Appliance Software 7.2.1.24 Cisco Adaptive Security Appliance Software 7.2.2 Cisco Adaptive Security Appliance Software 7.2.2.6 Cisco Adaptive Security Appliance Software 7.2.2.10 Cisco Adaptive Security Appliance Software 7.2.2.14 Cisco Adaptive Security Appliance Software 7.2.2.18 Cisco Adaptive Security Appliance Software 7.2.2.19 Cisco Adaptive Security Appliance Software 7.2.2.22 Cisco Adaptive Security Appliance Software 7.2.2.34 Cisco Adaptive Security Appliance Software 7.2.3 Cisco Adaptive Security Appliance Software 7.2.3.1 Cisco Adaptive Security Appliance Software 7.2.3.12 Cisco Adaptive Security Appliance Software 7.2.3.16 Cisco Adaptive Security Appliance Software 7.2.4 Cisco Adaptive Security Appliance Software 7.2.4.1 Cisco Adaptive Security Appliance Software 7.2.4.6 Cisco Adaptive Security Appliance Software 7.2.4.9 Cisco Adaptive Security Appliance Software 7.2.4.18 Cisco Adaptive Security Appliance Software 7.2.4.25 Cisco Adaptive Security Appliance Software 7.2.4.27 Cisco Adaptive Security Appliance Software 7.2.4.30 Cisco Adaptive Security Appliance Software 7.2.4.33 Cisco Adaptive Security Appliance Software 7.2.5 Cisco Adaptive Security Appliance Software 7.2.5.2 Cisco Adaptive Security Appliance Software 7.2.5.4 Cisco Adaptive Security Appliance Software 7.2.5.7 Cisco Adaptive Security Appliance Software 7.2.5.8 Cisco Adaptive Security Appliance Software 7.2.5.10 Cisco Adaptive Security Appliance Software 7.2.5.12 Cisco Adaptive Security Appliance Software 7.2.5.16 Cisco Adaptive Security Appliance Software 7.3.0 Cisco Adaptive Security Appliance Software 7.3.1 Cisco Adaptive Security Appliance Software 7.3.1.1 Cisco Adaptive Security Appliance Software 8.0 Cisco Adaptive Security Appliance Software 8.0$2$ Cisco Adaptive Security Appliance Software 8.0$3$ Cisco Adaptive Security Appliance Software 8.0$4$ Cisco Adaptive Security Appliance Software 8.0$5$ Cisco Adaptive Security Appliance Software 8.0$5.28$ Cisco Adaptive Security Appliance Software 8.0$5.31$ Cisco Adaptive Security Appliance Software 8.0.1.2 Cisco Adaptive Security Appliance Software 8.0.2 Cisco Adaptive Security Appliance Software 8.0.2.11 Cisco Adaptive Security Appliance Software 8.0.2.15 Cisco Adaptive Security Appliance Software 8.0.3 Cisco Adaptive Security Appliance Software 8.0.3.6 Cisco Adaptive Security Appliance Software 8.0.3.12 Cisco Adaptive Security Appliance Software 8.0.3.19 Cisco Adaptive Security Appliance Software 8.0.4 Cisco Adaptive Security Appliance Software 8.0.4.3 Cisco Adaptive Security Appliance Software 8.0.4.9 Cisco Adaptive Security Appliance Software 8.0.4.16 Cisco Adaptive Security Appliance Software 8.0.4.23 Cisco Adaptive Security Appliance Software 8.0.4.25 Cisco Adaptive Security Appliance Software 8.0.4.28 Cisco Adaptive Security Appliance Software 8.0.4.31 Cisco Adaptive Security Appliance Software 8.0.4.32 Cisco Adaptive Security Appliance Software 8.0.4.33 Cisco Adaptive Security Appliance Software 8.0.5 Cisco Adaptive Security Appliance Software 8.0.5.20 Cisco Adaptive Security Appliance Software 8.0.5.23 Cisco Adaptive Security Appliance Software 8.0.5.25 Cisco Adaptive Security Appliance Software 8.0.5.27 Cisco Adaptive Security Appliance Software 8.0.5.28 Cisco Adaptive Security Appliance Software 8.0.5.31 Cisco Adaptive Security Appliance Software 8.1 Cisco Adaptive Security Appliance Software 8.1.0.104 Cisco Adaptive Security Appliance Software 8.1.1 Cisco Adaptive Security Appliance Software 8.1.1.6 Cisco Adaptive Security Appliance Software 8.1.2 Cisco Adaptive Security Appliance Software 8.1.2.13 Cisco Adaptive Security Appliance Software 8.1.2.15 Cisco Adaptive Security Appliance Software 8.1.2.16 Cisco Adaptive Security Appliance Software 8.1.2.19 Cisco Adaptive Security Appliance Software 8.1.2.23 Cisco Adaptive Security Appliance Software 8.1.2.24 Cisco Adaptive Security Appliance Software 8.1.2.49 Cisco Adaptive Security Appliance Software 8.1.2.50 Cisco Adaptive Security Appliance Software 8.1.2.55 Cisco Adaptive Security Appliance Software 8.1.2.56 Cisco Adaptive Security Appliance Software 8.2 Cisco Adaptive Security Appliance Software 8.2$1$ Cisco Adaptive Security Appliance Software 8.2$2$ Cisco Adaptive Security Appliance Software 8.2$3$ Cisco Adaptive Security Appliance Software 8.2$3.9$ Cisco Adaptive Security Appliance Software 8.2$4$ Cisco Adaptive Security Appliance Software 8.2$4.1$ Cisco Adaptive Security Appliance Software 8.2$4.4$ Cisco Adaptive Security Appliance Software 8.2$5$ Cisco Adaptive Security Appliance Software 8.2$5.35$ Cisco Adaptive Security Appliance Software 8.2$5.38$ Cisco Adaptive Security Appliance Software 8.2.0.45 Cisco Adaptive Security Appliance Software 8.2.1 Cisco Adaptive Security Appliance Software 8.2.1.1 Cisco Adaptive Security Appliance Software 8.2.1.11 Cisco Adaptive Security Appliance Software 8.2.2 Cisco Adaptive Security Appliance Software 8.2.2.9 Cisco Adaptive Security Appliance Software 8.2.2.10 Cisco Adaptive Security Appliance Software 8.2.2.12 Cisco Adaptive Security Appliance Software 8.2.2.16 Cisco Adaptive Security Appliance Software 8.2.2.17 Cisco Adaptive Security Appliance Software 8.2.3 Cisco Adaptive Security Appliance Software 8.2.4 Cisco Adaptive Security Appliance Software 8.2.4.1 Cisco Adaptive Security Appliance Software 8.2.4.4 Cisco Adaptive Security Appliance Software 8.2.5 Cisco Adaptive Security Appliance Software 8.2.5.13 Cisco Adaptive Security Appliance Software 8.2.5.22 Cisco Adaptive Security Appliance Software 8.2.5.26 Cisco Adaptive Security Appliance Software 8.2.5.33 Cisco Adaptive Security Appliance Software 8.2.5.40 Cisco Adaptive Security Appliance Software 8.2.5.41 Cisco Adaptive Security Appliance Software 8.2.5.46 Cisco Adaptive Security Appliance Software 8.2.5.48 Cisco Adaptive Security Appliance Software 8.2.5.50 Cisco Adaptive Security Appliance Software 8.2.5.52 Cisco Adaptive Security Appliance Software 8.2.5.55 Cisco Adaptive Security Appliance Software 8.2.5.57 Cisco Adaptive Security Appliance Software 8.2.5.59 Cisco Adaptive Security Appliance Software 8.3 Cisco Adaptive Security Appliance Software 8.3$1$	268
Hardware	Cisco Cisco 5500 Series Adaptive Security Appliance * Cisco ASA 5500 * Cisco PIX 500 *	3

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Nessus

NASL family	CISCO
NASL id	CISCO-SA-20110223-ASA.NASL
description	The remote Cisco ASA device is missing a security patch and may be affected by the following issues : - When configured for transparent firewall mode, a packet buffer exhaustion vulnerability could cause the appliance to stop forwarding traffic. (CVE-2011-0393) - When SCCP inspection is enabled, a malformed SCCP message could cause the appliance to reload. (CVE-2011-0394) - If both RIP and the Cisco Phone Proxy feature are enabled, the appliance may reload when processing valid RIP updates. (CVE-2011-0395) - When the appliance is configured as a local CA server, unauthorized users can obtain sensitive data without providing authentication. (CVE-2011-0396)
last seen	2020-06-01
modified	2020-06-02
plugin id	52586
published	2011-03-09
reporter	This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/52586
title	Cisco ASA 5500 Series Multiple Vulnerabilities (cisco-sa-20110223-asa)
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if(description) { script_id(52586); script_version("1.14"); script_cvs_date("Date: 2018/11/15 20:50:20"); script_cve_id("CVE-2011-0393", "CVE-2011-0394", "CVE-2011-0395", "CVE-2011-0396"); script_bugtraq_id(46518, 46524); script_xref(name:"CISCO-BUG-ID", value:"CSCtg66583"); script_xref(name:"CISCO-BUG-ID", value:"CSCtg69457"); script_xref(name:"CISCO-BUG-ID", value:"CSCtj04707"); script_xref(name:"CISCO-BUG-ID", value:"CSCtk12352"); script_xref(name:"CISCO-SA", value:"cisco-sa-20110223-asa"); script_name(english:"Cisco ASA 5500 Series Multiple Vulnerabilities (cisco-sa-20110223-asa)"); script_summary(english:"Checks the version of the remote ASA."); script_set_attribute( attribute:"synopsis", value:"The remote security device is missing a vendor-supplied security patch." ); script_set_attribute( attribute:"description", value: "The remote Cisco ASA device is missing a security patch and may be affected by the following issues : - When configured for transparent firewall mode, a packet buffer exhaustion vulnerability could cause the appliance to stop forwarding traffic. (CVE-2011-0393) - When SCCP inspection is enabled, a malformed SCCP message could cause the appliance to reload. (CVE-2011-0394) - If both RIP and the Cisco Phone Proxy feature are enabled, the appliance may reload when processing valid RIP updates. (CVE-2011-0395) - When the appliance is configured as a local CA server, unauthorized users can obtain sensitive data without providing authentication. (CVE-2011-0396)" ); script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?40e645f7" ); script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?7d46864f" ); script_set_attribute( attribute:"solution", value:"Apply the appropriate patch (see plugin output)." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date",value:"2011/02/23"); script_set_attribute(attribute:"patch_publication_date",value:"2011/02/23"); script_set_attribute(attribute:"plugin_publication_date", value:"2011/03/09"); script_set_attribute(attribute:"plugin_type",value:"local"); script_set_attribute(attribute:"cpe",value:"cpe:/h:cisco:asa_5500"); script_set_attribute(attribute:"cpe",value:"cpe:/a:cisco:adaptive_security_appliance_software"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc."); script_family(english:"CISCO"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Cisco/ASA", "Host/Cisco/ASA/model"); exit(0); } include("cisco_func.inc"); include("audit.inc"); asa = get_kb_item_or_exit('Host/Cisco/ASA'); model = get_kb_item_or_exit('Host/Cisco/ASA/model'); ver = extract_asa_version(asa); if (isnull(ver)) audit(AUDIT_FN_FAIL, 'extract_asa_version'); if (model !~ '^55[0-9][0-9]') audit(AUDIT_HOST_NOT, 'ASA 5500'); # first check 7.1 (the recommendation is to migrate to 7.2 and upgrade) if (ver =~ '^7\\.1($\|[^0-9])') { report = '\n Installed release : ' + ver + '\n Fixed release : 7.2(5.2)\n'; security_hole(port:0, extra:report); exit(0); } # compare the ASA version versus all recommended releases. The # comparison is only made if the major versions match up recommended_releases = make_list('7.0(8.12)', '7.2(5.2)', '8.0(5.23)', '8.1(2.49)', '8.2(4.1)', '8.3(2.13)', '8.4(1)'); foreach patch (recommended_releases) { if (check_asa_release(version:ver, patched:patch)) { report = '\n Installed release : ' + ver + '\n Fixed release : ' + patch + '\n'; security_hole(port:0, extra:report); exit(0); } } audit(AUDIT_INST_VER_NOT_VULN, 'ASA', ver);

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

References