Improper input validation in Cisco 5500_series_adaptive_security_appliance

CVE-2011-4006

The ESMTP inspection feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.5 allows remote attackers to cause a denial of service (CPU consumption) via an unspecified closing sequence, aka Bug…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.004 (62.7th percentile) — read the EPSS interpretation.

Affected products

Cisco 5500_series_adaptive_security_appliance
Cisco Adaptive_security_appliance_software — versions 8.2\(1\), 8.2\(2\), 8.2\(3\)
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

1027008 (vdb-entry, x_refsource_SECTRACK)
psirt@cisco.com (x_refsource_CONFIRM)