FKIE_CVE-2010-2816

Vulnerability from fkie_nvd - Published: 2010-08-09 11:58 - Updated: 2025-04-11 00:51
Severity ?
Summary
Unspecified vulnerability in the SIP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.17), 8.1 before 8.1(2.45), and 8.2 before 8.2(2.13) allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCtd32106.
References
psirt@cisco.comhttp://secunia.com/advisories/40842Vendor Advisory
psirt@cisco.comhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.shtmlPatch, Vendor Advisory
psirt@cisco.comhttp://www.securityfocus.com/bid/42189
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/40842Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.shtmlPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/42189
Impacted products
Vendor Product Version
cisco adaptive_security_appliance 8.0\(2\)
cisco adaptive_security_appliance 8.0\(3\)
cisco adaptive_security_appliance 8.0\(4\)
cisco adaptive_security_appliance 8.0\(5\)
cisco adaptive_security_appliance 8.1\(1\)
cisco adaptive_security_appliance 8.1\(2\)
cisco adaptive_security_appliance 8.2
cisco adaptive_security_appliance 8.2\(1\)
cisco adaptive_security_appliance 8.2\(2\)
cisco adaptive_security_appliance_software 8.0
cisco asa_5500 *
cisco asa_5505 *
cisco asa_5510 *
cisco asa_5520 *
cisco asa_5540 *
cisco asa_5550 *
cisco asa_5580 *
cisco pix_500 *
cisco pix_501 *
cisco pix_506e *
cisco pix_firewall_506 *
cisco pix_firewall_515 *
cisco pix_firewall_520 *
cisco pix_firewall_525 *
cisco pix_firewall_535 *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "81B53285-7486-47E0-8447-44ECA57A392C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(3\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "E0D62E55-845B-49DD-93AA-9D8E7B755F8E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(4\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "33E6756C-407E-4236-85A1-953F9FF6799A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(5\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "825E3056-F420-476D-957E-A22B164BD0F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.1\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "CC516FF2-7C0D-4F58-B61B-34FE7294DC1B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.1\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "BDD95F2F-1C0E-4673-AE36-1BAF40EC7CC0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A904D03-264C-4B01-B2B6-12455106B37D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "74826084-14BB-47C4-9EE3-56C3CF206724",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "CFA73BA5-D1C5-4561-86F1-5B37C64374E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4AFE6E41-E5C3-48AA-A534-A1AF3E86E3F0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:asa_5500:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6FCBA3A3-7C8F-481A-9BEC-78981547F8BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5505:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "46FB0E87-E81A-4DF8-8A01-0D0727949D87",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5510:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFC8F36-ABFD-429F-AC2C-60BB481EECB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5520:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BBFC985-514D-477B-B881-BB8ABEDFA59B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5540:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "193CF237-BBE5-4016-8167-24808FA52CBD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5550:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "427C9F27-ACE4-416B-9723-2AEECF9AB9CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5580:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A5F5BF0-E96E-4FD3-B210-1E0F96AF4249",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2706D3BA-37A2-4D71-94DD-5386F5C94374",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_501:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "01B0A1E7-F882-4FD8-811A-3D6D0A9FC938",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_506e:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F353E8D-FE19-4683-BD35-FFBF503C45DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_506:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E346F334-9BA3-4BDC-8D0F-D749A7D76E66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_515:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6EE5C14-F556-48A5-BB3F-5465DC823B85",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_520:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "32E437F4-1B19-4B57-9EAD-3AC04717E389",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_525:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "29B2019F-DF6E-4924-B0D2-37094B5265F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_535:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9600B7CF-4AEB-4319-8EF4-4FEA40EF6367",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the SIP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.17), 8.1 before 8.1(2.45), and 8.2 before 8.2(2.13) allows remote attackers to cause a denial of service (device reload) via crafted SIP packets, aka Bug ID CSCtd32106."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en la caracter\u00edstica de inspecci\u00f3n SIP en Cisco Adaptive Security Appliances (ASA) para dispositivos serie 5500 con software v8.0 anteriores a v8.0(5.17), v8.1 anteriores a v8.1(2.45), y v8.2 anteriores a v8.2(2.13), permite a atacantes remotos provocar una denegaci\u00f3n de servicio (recarga del dispositivo) mediante paquetes SIP manipulados, tambi\u00e9n conocido como Bug ID CSCtd32106."
    }
  ],
  "id": "CVE-2010-2816",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-08-09T11:58:17.597",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/40842"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.shtml"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securityfocus.com/bid/42189"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/40842"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/42189"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.