cisco-sa-20080123-asa

Cisco PIX and ASA Time-to-Live Vulnerability

cisco-sa-20080123-asa · High · Published 18 years ago · Updated 18 years ago

A crafted IP packet vulnerability exists in the Cisco PIX 500 Series Security Appliance (PIX) and the Cisco 5500 Series Adaptive Security Appliance (ASA) that may result in a reload of the device. This vulnerability is triggered during processing of a crafted IP packet when the Time-to-Live (TTL) decrement feature is enabled. Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-0028 has been assigned to this vulnerability. Cisco has released software updates that address this vulnerability. A workaround that mitigates this vulnerability is available. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20080123-asa.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEs	CVE-2008-0028
Cisco Bug IDs	NA
CVSS Score	Base 7.8 Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Product Names From Source	Cisco PIX/ASA

Related Products

Product	CVE	Evidence
Cisco PIX/ASA	CVE-2008-0028	Cisco OpenVuln

Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco PIX and ASA Time-to-Live Vulnerability

Workarounds

Related Products