CVE-2010-4670 — Cisco Adaptive Security Appliance Software vulnerability

CWE-3997 documents4 sources

Severity

7.8HIGHNVD

EPSS

1.4%

top 19.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Cisco Adaptive Security Appliance Software

Timeline

PublishedJan 7

Latest updateMay 17

Description

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2(3) and earlier, and Cisco PIX Security Appliances devices, allows remote attackers to cause a denial of service (CPU consumption and device hang) by sending many Router Advertisement (RA) messages with different source addresses, as demonstrated by the flood_router6 program in the thc-ipv6 package, aka Bug ID CSCti24526.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/adaptive_security_appliance_software8.2\(3\)+54

▶Ubuntulinux/linux_kernel< 3.11.0-12.19

🔴Vulnerability Details

GHSA

GHSA-h2rp-j2g8-grv6: The Neighbor Discovery (ND) protocol implementation in the IPv6 stack on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8↗2022-05-17

▶

GHSA

GHSA-27vf-8fw5-36p7: The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possibly other BSD-based operating systems allows remote↗2022-05-17

▶

OSV

CVE-2011-2393: The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possibly other BSD-based operating systems allows remote↗2012-02-02

▶

CVEList

CVE-2011-2393: The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possibly other BSD-based operating systems allows remote↗2012-02-02

▶

CVEList

CVE-2010-4670: The Neighbor Discovery (ND) protocol implementation in the IPv6 stack on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8↗2011-01-07

▶