Vigil@nce - Cisco ASA: denial of service via Connections Table
March 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send special packets related to a NAT rule, so
that Cisco ASA consumes a memory area to store connections, which
is never freed.
Impacted products: ASA
Severity: 2/4
Creation date: 26/02/2013
DESCRIPTION OF THE VULNERABILITY
An attacker can send special packets related to a NAT rule, so
that Cisco ASA consumes a memory area to store connections, which
is never freed.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-ASA-denial-of-service-via-Connections-Table-12463