CVE-2007-5569

Published: Oct 18, 2007Modified: Apr 23, 2026

7.1

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability: 8.6 / Impact: 6.9

Source: NVD

Description

Cisco PIX and ASA appliances with 7.1 and 7.2 software, when configured for TLS sessions to the device, allow remote attackers to cause a denial of service (device reload) via a crafted TLS packet, aka CSCsg43276 and CSCsh97120.

Affected (4)

Products: Cisco: Adaptive Security Appliance, Adaptive Security Appliance Software, Pix 500

Cisco

3 products

Adaptive Security Appliance

Adaptive Security Appliance Software

Pix 500

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Cisco Adaptive Security Appliance	Version 7.2
Cisco Adaptive Security Appliance Software	Version 7.1
Cisco Pix 500	All versions
Cisco Pix 500	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (14)

http://secunia.com/advisories/27193

Source: cve@mitre.org

http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda56.shtml

Source: cve@mitre.org

http://www.securityfocus.com/bid/26104

Source: cve@mitre.org

http://www.securitytracker.com/id?1018826

Source: cve@mitre.org

http://www.securitytracker.com/id?1018827

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/3531

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/37260

Source: cve@mitre.org

http://secunia.com/advisories/27193