Vulnerability Description
Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtf55259.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Adaptive Security Appliance | 7.2\(3\) |
| Cisco | Adaptive Security Appliance Software | 7.2\(1\) |
| Cisco | Asa 5500 | All versions |
| Cisco | Asa 5505 | All versions |
| Cisco | Asa 5510 | All versions |
| Cisco | Asa 5520 | All versions |
| Cisco | Asa 5540 | All versions |
| Cisco | Asa 5550 | All versions |
| Cisco | Asa 5580 | All versions |
| Cisco | Pix 500 | All versions |
| Cisco | Pix 501 | All versions |
| Cisco | Pix 506E | All versions |
| Cisco | Pix Firewall 506 | All versions |
| Cisco | Pix Firewall 515 | All versions |
| Cisco | Pix Firewall 520 | All versions |
| Cisco | Pix Firewall 525 | All versions |
| Cisco | Pix Firewall 535 | All versions |
References
- http://secunia.com/advisories/40842Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.sPatchVendor Advisory
- http://www.securityfocus.com/bid/42198
- http://secunia.com/advisories/40842Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.sPatchVendor Advisory
- http://www.securityfocus.com/bid/42198
FAQ
What is CVE-2010-2815?
CVE-2010-2815 is a vulnerability with a CVSS score of 7.8 (HIGH). Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8....
How severe is CVE-2010-2815?
CVE-2010-2815 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2815?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Adaptive Security Appliance, Cisco Adaptive Security Appliance Software, Cisco Asa 5500, Cisco Asa 5505, Cisco Asa 5510.