FKIE_CVE-2011-0395

Vulnerability from fkie_nvd - Published: 2011-02-25 12:00 - Updated: 2025-04-11 00:51
Severity ?
Summary
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.20), 8.1 before 8.1(2.48), 8.2 before 8.2(3), and 8.3 before 8.3(2.1), when the RIP protocol and the Cisco Phone Proxy functionality are configured, allow remote attackers to cause a denial of service (device reload) via a RIP update, aka Bug ID CSCtg66583.
References
psirt@cisco.comhttp://secunia.com/advisories/43488
psirt@cisco.comhttp://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtmlVendor Advisory
psirt@cisco.comhttp://www.securitytracker.com/id?1025108
psirt@cisco.comhttp://www.vupen.com/english/advisories/2011/0493
psirt@cisco.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/65590
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43488
af854a3a-2127-422b-91ae-364da2661108http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtmlVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1025108
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0493
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/65590
Impacted products
Vendor Product Version
cisco adaptive_security_appliance 8.0\(2\)
cisco adaptive_security_appliance 8.0\(3\)
cisco adaptive_security_appliance 8.0\(4\)
cisco adaptive_security_appliance 8.0\(5\)
cisco adaptive_security_appliance 8.1\(1\)
cisco adaptive_security_appliance 8.1\(2\)
cisco adaptive_security_appliance 8.2
cisco adaptive_security_appliance 8.2\(1\)
cisco adaptive_security_appliance 8.2\(2\)
cisco adaptive_security_appliance 8.3
cisco adaptive_security_appliance_software 8.0
cisco adaptive_security_appliance_software 8.3\(1\)
cisco asa_5500 *
cisco asa_5505 *
cisco asa_5510 *
cisco asa_5520 *
cisco asa_5540 *
cisco asa_5550 *
cisco asa_5580 *
cisco pix_500 *
cisco pix_501 *
cisco pix_506e *
cisco pix_firewall_506 *
cisco pix_firewall_515 *
cisco pix_firewall_520 *
cisco pix_firewall_525 *
cisco pix_firewall_535 *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "81B53285-7486-47E0-8447-44ECA57A392C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(3\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "E0D62E55-845B-49DD-93AA-9D8E7B755F8E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(4\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "33E6756C-407E-4236-85A1-953F9FF6799A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.0\\(5\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "825E3056-F420-476D-957E-A22B164BD0F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.1\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "CC516FF2-7C0D-4F58-B61B-34FE7294DC1B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.1\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "BDD95F2F-1C0E-4673-AE36-1BAF40EC7CC0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A904D03-264C-4B01-B2B6-12455106B37D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "74826084-14BB-47C4-9EE3-56C3CF206724",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.2\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "CFA73BA5-D1C5-4561-86F1-5B37C64374E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance:8.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDEA2295-5B38-45BC-9099-5A448482FB59",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4AFE6E41-E5C3-48AA-A534-A1AF3E86E3F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "31BA0ED9-6962-4E19-89A1-1724AADEC669",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:asa_5500:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6FCBA3A3-7C8F-481A-9BEC-78981547F8BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5505:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "46FB0E87-E81A-4DF8-8A01-0D0727949D87",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5510:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFC8F36-ABFD-429F-AC2C-60BB481EECB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5520:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BBFC985-514D-477B-B881-BB8ABEDFA59B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5540:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "193CF237-BBE5-4016-8167-24808FA52CBD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5550:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "427C9F27-ACE4-416B-9723-2AEECF9AB9CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:asa_5580:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A5F5BF0-E96E-4FD3-B210-1E0F96AF4249",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2706D3BA-37A2-4D71-94DD-5386F5C94374",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_501:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "01B0A1E7-F882-4FD8-811A-3D6D0A9FC938",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_506e:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F353E8D-FE19-4683-BD35-FFBF503C45DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_506:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E346F334-9BA3-4BDC-8D0F-D749A7D76E66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_515:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6EE5C14-F556-48A5-BB3F-5465DC823B85",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_520:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "32E437F4-1B19-4B57-9EAD-3AC04717E389",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_525:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "29B2019F-DF6E-4924-B0D2-37094B5265F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:pix_firewall_535:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9600B7CF-4AEB-4319-8EF4-4FEA40EF6367",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.20), 8.1 before 8.1(2.48), 8.2 before 8.2(3), and 8.3 before 8.3(2.1), when the RIP protocol and the Cisco Phone Proxy functionality are configured, allow remote attackers to cause a denial of service (device reload) via a RIP update, aka Bug ID CSCtg66583."
    },
    {
      "lang": "es",
      "value": "Dispositivos de la serie Cisco Adaptive Security Appliances (ASA) 5500  con el software v8.0 anterior a v8.0 (5.20), v8.1 anterior a v8.1 (2.48), v8.2 anterior a v8.2 (3), y v8.3 anterior a v8.3 (2.1), cuando el protocolo RIP y la funcionalidad Cisco Phone  est\u00e1n configuradas, permiten a atacantes remotos provocar una denegaci\u00f3n de servicio (recarga del dispositivo) a trav\u00e9s de una actualizaci\u00f3n  RIP, tambi\u00e9n conocido como error ID CSCtg66583"
    }
  ],
  "id": "CVE-2011-0395",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-02-25T12:00:19.260",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "http://secunia.com/advisories/43488"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securitytracker.com/id?1025108"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.vupen.com/english/advisories/2011/0493"
    },
    {
      "source": "psirt@cisco.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65590"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/43488"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e14d.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1025108"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0493"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65590"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.