CVE-2009-1156

CWE-264 CWE-3995 documents5 sources

Severity

5.7MEDIUM

EPSS

0.4%

top 39.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Adaptive Security Appliance 5500 Cisco PIX

Timeline

PublishedApr 9

Latest updateMay 2

Description

Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series devices 8.0 before 8.0(4)25 and 8.1 before 8.1(2)15, when an SSL VPN or ASDM access is configured, allows remote attackers to cause a denial of service (device reload) via a crafted (1) SSL or (2) HTTP packet.

CVSS vector

AV:A/AC:M/C:N/I:N/A:CExploitability: 5.5 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/adaptive_security_appliance_55008.0, 8.1+1

▶NVDcisco/pix8.0, 8.1+1

Patches

Patch: www.cisco.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-775m-7rhh-44pp: Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series devices 8↗2022-05-02

▶

CVEList

CVE-2009-1156: Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series devices 8↗2009-04-09

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco ASA Adaptive Security Appliance and Cisco PIX Security Appliances↗2009-04-08

▶

💬Community

Bugzilla

CVE-2009-5065 CVE-2011-1156 CVE-2011-1157 CVE-2011-1158 python-feedparser: multiple flaws corrected in version 5.0.1↗2011-03-14

▶