CVE-2012-0353

Cisco ASA < 8.0(5.25), 8.1 < 8.1(2.50), 8.2 < 8.2(5.5), 8.3 < 8.3(2.22), 8.4 < 8.4(2.1), 8.5 < 8.5(1.2) DoS via UDP

Title source: llm
STIX 2.1

Description

The UDP inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.5), 8.3 before 8.3(2.22), 8.4 before 8.4(2.1), and 8.5 before 8.5(1.2) does not properly handle flows, which allows remote attackers to cause a denial of service (device reload) via a crafted series of (1) IPv4 or (2) IPv6 UDP packets, aka Bug ID CSCtq10441.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/52484
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48423
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/74029
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/80043
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1026800

Scores

EPSS 0.0257
EPSS Percentile 83.3%

Details

CWE
CWE-20
Status published
Products (40)
cisco/5500_series_adaptive_security_appliance
cisco/adaptive_security_appliance_software 8.0
cisco/adaptive_security_appliance_software 8.0\(2\)
cisco/adaptive_security_appliance_software 8.0\(3\)
cisco/adaptive_security_appliance_software 8.0\(4\)
cisco/adaptive_security_appliance_software 8.0\(5\)
cisco/adaptive_security_appliance_software 8.0.2
cisco/adaptive_security_appliance_software 8.0.3
cisco/adaptive_security_appliance_software 8.0.4
cisco/adaptive_security_appliance_software 8.0.5
... and 30 more
Published Mar 15, 2012
Tracked Since Feb 18, 2026