漏洞标题
N/A
漏洞描述信息
Cisco自适应安全Appliance (ASA) CX 上下文感知安全模块的数据平面IP碎片处理漏洞可能导致无授权的远程攻击者使 CX 模块无法处理进一步流量,导致拒绝服务(DoS)状态。该漏洞是由于对IP碎片的不当处理引起的。攻击者可以通过向 CX 模块发送精心构造的IP碎片流量来利用此漏洞。利用可能导致攻击者耗尽共享内存(SHM)中的可用数据包缓冲区,使 CX 模块无法处理进一步流量,导致DoS状态。该漏洞对所有版本的ASA CX 上下文感知安全模块都有影响。Cisco尚未发布并不会发布针对此漏洞的软件更新。没有针对此漏洞的修复方法。Cisco bug ID: CSCva62946。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A vulnerability in the data plane IP fragment handler of the Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security module could allow an unauthenticated, remote attacker to cause the CX module to be unable to process further traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to improper handling of IP fragments. An attacker could exploit this vulnerability by sending crafted fragmented IP traffic across the CX module. An exploit could allow the attacker to exhaust free packet buffers in shared memory (SHM), causing the CX module to be unable to process further traffic, resulting in a DoS condition. This vulnerability affects all versions of the ASA CX Context-Aware Security module. Cisco has not released and will not release software updates that address this vulnerability. There are no workarounds that address this vulnerability. Cisco Bug IDs: CSCva62946.
CVSS信息
N/A
漏洞类别
资源管理错误
漏洞标题
Cisco Adaptive Security Appliance CX Context-Aware Security模块安全漏洞
漏洞描述信息
Cisco Adaptive Security Appliance(ASA) CX Context-Aware Security是美国思科(Cisco)公司的一款用于扩展ASA平台的附加服务模块。 Cisco ASA CX Context-Aware Security模块中的data plane IP fragment handler存在安全漏洞,该漏洞源于程序没有正确的处理IP段。远程攻击者可利用该漏洞造成拒绝服务。
CVSS信息
N/A
漏洞类别
资源管理错误