Vulnerability in Cisco 5500_adaptive_security_appliance

CVE-2012-5415

Race condition on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (CPU consumption or device reload) by establishing multiple connections, leading to improper handling of hash lookups f…

Vulnerability class: Race Condition

EPSS: 0.003 (56.3th percentile) — read the EPSS interpretation.

Affected products

Cisco 5500_adaptive_security_appliance — versions 7.2
Cisco 5500_series_adaptive_security_appliance — versions 7.2
Cisco Adaptive_security_appliance
N/a — versions n/a

Weakness classification (CWE)

CWE-362 — Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)

References

20130411 Secondary Flows Lookup Denial of Service Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)