Vulnerability Details : CVE-2010-0566
Unspecified vulnerability in Cisco ASA 5500 Series Adaptive Security Appliance 7.0 before 7.0(8.10), 7.2 before 7.2(4.45), 8.0 before 8.0(4.44), 8.1 before 8.1(2.35), and 8.2 before 8.2(1.10) allows remote attackers to cause a denial of service (device reload) via a malformed TCP segment when certain NAT translation and Cisco AIP-SSM configurations are used, aka Bug ID CSCtb37219.
Vulnerability category: Denial of service
Products affected by CVE-2010-0566
- cpe:2.3:h:cisco:asa_5500:7.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:8.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:8.0:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:asa_5500:8.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:pix_500:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2010-0566
1.13%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 76 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0566
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.1
|
HIGH | AV:N/AC:M/Au:N/C:N/I:N/A:C |
8.6
|
6.9
|
NIST |
References for CVE-2010-0566
-
http://osvdb.org/62431
-
http://www.securitytracker.com/id?1023612
Cisco ASA TCP, SIP, SCCP, DTLS, and IKE Processing Flaws Let Remote Users Deny Service - SecurityTracker
-
http://www.securityfocus.com/bid/38278
Cisco ASA 5500 Crafted TCP Segment Denial of Service Vulnerability
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/56340
Cisco ASA 5500 NAT translation and AIP-SSM denial of service CVE-2010-0566 Vulnerability Report
-
http://www.vupen.com/english/advisories/2010/0415
Webmail | OVH- OVHVendor Advisory
-
http://secunia.com/advisories/38618
Sign inVendor Advisory
-
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1910c.shtml
Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances - CiscoVendor Advisory
Jump to