Cisco ASA 5500 Series Multiple Vulnerabilities (cisco-sa-20120314-asa)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote security device is missing a vendor-supplied security
patch.

Description :

The remote Cisco ASA is missing a security patch and may be affected
by the following issues :

- When UDP inspection is enabled, inspecting malformed
transit traffic could cause the device to reload.
(CVE-2012-0353)

- When the Threat Detection feature is configured with the
Scanning Threat Mode feature and the 'shun' option is
enabled, unspecified transit traffic could cause the device
to reload. (CVE-2012-0354)

- A vulnerability in syslog could result in a device reload if
specially crafted transit traffic is received. (CVE-2012-0355)

- When multicast routing is enabled, processing a specially
crafted Protocol Independent Multicast (PIM) message
can cause the device to reload. (CVE-2012-0356)

See also :

http://www.nessus.org/u?2fd78701

Solution :

Apply the relevant patch referenced in Cisco Security Advisory
cisco-sa-20120314-asa.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 6.4
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 58831 ()

Bugtraq ID: 52482
52484
52488
52489

CVE ID: CVE-2012-0353
CVE-2012-0354
CVE-2012-0355
CVE-2012-0356