CVE-2010-0567

Severity Score

5.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(5.1), 8.1 before 8.1(2.37), and 8.2 before 8.2(1.15); and Cisco PIX 500 Series Security Appliance; allows remote attackers to cause a denial of service (active IPsec tunnel loss and prevention of new tunnels) via a malformed IKE message through an existing tunnel to UDP port 4500, aka Bug ID CSCtc47782.

Vulnerabilidad no especificada en Cisco ASA 5500 Series Adaptive Security Appliance v7.0 anterior a v7.0(8.10), v7.2 anterior a v7.2(4.45), v8.0 anterior a v8.0(5.1), 8.1 anterior a v8.1(2.37), y v8.2 anterior a v8.2(1.15), y Cisco PIX 500 Series Security Appliance, permite a atacantes remotos provocar una denegación de servicio (pérdida del túnel IPsec activo y la prevención de nuevos túneles) mediante un mensaje IKE malformado a través de un túnel existente en el puerto UDP 4500, también conocido como Bug ID CSCtc47782.

*Credits: N/A

CVSS Scores

NISTv2 5.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-02-10 CVE Reserved
2010-02-18 CVE Published
2023-03-08 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source
http://osvdb.org/62436	Vdb Entry
http://www.securityfocus.com/bid/38279	Vdb Entry
http://www.securitytracker.com/id?1023612	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/56341	Vdb Entry

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/38618	2017-08-17
http://secunia.com/advisories/38636	2017-08-17
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1910c.shtml	2017-08-17
http://www.vupen.com/english/advisories/2010/0415	2017-08-17

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Asa 5500 Search vendor "Cisco" for product "Asa 5500"				7.1 Search vendor "Cisco" for product "Asa 5500" and version "7.1"		-		Affected
Cisco Search vendor "Cisco"		Asa 5500 Search vendor "Cisco" for product "Asa 5500"				7.2 Search vendor "Cisco" for product "Asa 5500" and version "7.2"		-		Affected
Cisco Search vendor "Cisco"		Asa 5500 Search vendor "Cisco" for product "Asa 5500"				8.0 Search vendor "Cisco" for product "Asa 5500" and version "8.0"		-		Affected
Cisco Search vendor "Cisco"		Asa 5500 Search vendor "Cisco" for product "Asa 5500"				8.1 Search vendor "Cisco" for product "Asa 5500" and version "8.1"		-		Affected
Cisco Search vendor "Cisco"		Asa 5500 Search vendor "Cisco" for product "Asa 5500"				8.2 Search vendor "Cisco" for product "Asa 5500" and version "8.2"		-		Affected
Cisco Search vendor "Cisco"		Pix 500 Search vendor "Cisco" for product "Pix 500"				*		-		Affected