Buffer overflow in Cisco 5500_series_adaptive_security_appliance

CVE-2011-0379

Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with…

Vulnerability class: Buffer Overflow

EPSS: 0.064 (91.2th percentile) — read the EPSS interpretation.

Affected products

Cisco 5500_series_adaptive_security_appliance
Cisco Adaptive_security_appliance_software — versions 1.6.0
Cisco Asa_5500
Cisco Telepresence_manager — versions 1.2.0.0, 1.3.2, 1.4.0
Cisco Telepresence_multipoint_switch
Cisco Telepresence_multipoint_switch_software — versions 1.0.4.0, 1.1.0, 1.1.1
Cisco Telepresence_system_1000
Cisco Telepresence_system_1100
Cisco Telepresence_system_1300_series
Cisco Telepresence_system_3000

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

1025111 (vdb-entry, x_refsource_SECTRACK)
20110223 Multiple Vulnerabilities in Cisco TelePresence Recording Server (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
20110223 Multiple Vulnerabilities in Cisco TelePresence Manager (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1025114 (vdb-entry, x_refsource_SECTRACK)
20110223 Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1025112 (vdb-entry, x_refsource_SECTRACK)
20110223 Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1025113 (vdb-entry, x_refsource_SECTRACK)