Vulnerability Description
Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 and 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.10), and 8.3 before 8.3(1.1) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a crafted IKE message, aka Bug ID CSCte46507.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Adaptive Security Appliance | 7.0.1 |
| Cisco | Adaptive Security Appliance Software | 7.0 |
| Cisco | Asa 5500 | All versions |
| Cisco | Asa 5505 | All versions |
| Cisco | Asa 5510 | All versions |
| Cisco | Asa 5520 | All versions |
| Cisco | Asa 5540 | All versions |
| Cisco | Asa 5550 | All versions |
| Cisco | Asa 5580 | All versions |
| Cisco | Pix 500 | All versions |
| Cisco | Pix 501 | All versions |
| Cisco | Pix 506E | All versions |
| Cisco | Pix Firewall 506 | All versions |
| Cisco | Pix Firewall 515 | All versions |
| Cisco | Pix Firewall 520 | All versions |
| Cisco | Pix Firewall 525 | All versions |
| Cisco | Pix Firewall 535 | All versions |
References
- http://secunia.com/advisories/40842Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.sPatchVendor Advisory
- http://www.securityfocus.com/bid/42190
- http://secunia.com/advisories/40842Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.sPatchVendor Advisory
- http://www.securityfocus.com/bid/42190
FAQ
What is CVE-2010-2817?
CVE-2010-2817 is a vulnerability with a CVSS score of 7.8 (HIGH). Unspecified vulnerability in the IKE implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 before 7.0(8.11), 7.1 and 7.2 before 7.2(5), 8.0 before 8.0(5.15),...
How severe is CVE-2010-2817?
CVE-2010-2817 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2817?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Adaptive Security Appliance, Cisco Adaptive Security Appliance Software, Cisco Asa 5500, Cisco Asa 5505, Cisco Asa 5510.