Vulnerability Details : CVE-2010-0565
Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.2 before 7.2(4.45), 8.0 before 8.0(4.44), 8.1 before 8.1(2.35), and 8.2 before 8.2(1.10), allows remote attackers to cause a denial of service (page fault and device reload) via a malformed DTLS message, aka Bug ID CSCtb64913 and "WebVPN DTLS Denial of Service Vulnerability."
Vulnerability category: Denial of service
Products affected by CVE-2010-0565
- cpe:2.3:h:cisco:asa_5500:7.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:8.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:8.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:8.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2010-0565
1.57%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 86 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0565
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2010-0565
-
http://www.securitytracker.com/id?1023612
Cisco ASA TCP, SIP, SCCP, DTLS, and IKE Processing Flaws Let Remote Users Deny Service - SecurityTracker
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/56339
Cisco ASA 5500 WebVPN DTLS denial of service CVE-2010-0565 Vulnerability Report
-
http://www.vupen.com/english/advisories/2010/0415
Webmail | OVH- OVHVendor Advisory
-
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1910c.shtml
Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances - CiscoVendor Advisory
-
http://www.securityfocus.com/bid/38280
Cisco ASA 5500 WebVPN DTLS Packet Denial of Service Vulnerability
Jump to