CVE-2008-0028

Published Jan 23, 2008

Last updated 2 years ago

CVSS info 7.1

Overview

Description: Unspecified vulnerability in Cisco PIX 500 Series Security Appliance and 5500 Series Adaptive Security Appliance (ASA) before 7.2(3)6 and 8.0(3), when the Time-to-Live (TTL) decrement feature is enabled, allows remote attackers to cause a denial of service (device reload) via a crafted IP packet.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "324140A9-53BA-439E-A748-676584CE24A1",
            "versionEndExcluding": "7.2\\(3\\)6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:8.0\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31E7CB8A-17DF-43EB-9BCB-F2E5293C949F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:pix_firewall_software:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76D9DFF9-699B-4124-842F-6B8655F19D6A",
            "versionEndExcluding": "7.2\\(3\\)6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:pix_firewall_software:8.0\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40F5356F-4EA4-463A-A3E3-DD2A7252ACB5"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:5500_series_adaptive_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AE9B5E72-D461-4CB6-9F78-E0B23981ACD9"
          },
          {
            "criteria": "cpe:2.3:h:cisco:pix_500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AE0B01EA-ECFF-4D57-9A68-4265A9821F39"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References