CVE-2009-1157

high

Description

Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 7.0 before 7.0(8)6, 7.1 before 7.1(2)82, 7.2 before 7.2(4)30, 8.0 before 8.0(4)28, and 8.1 before 8.1(2)19 allows remote attackers to cause a denial of service (memory consumption or device reload) via a crafted TCP packet.

References

http://www.vupen.com/english/advisories/2009/0981

http://www.securitytracker.com/id?1022015

http://www.securityfocus.com/bid/34429

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a994f6.shtml

http://secunia.com/advisories/34607

http://osvdb.org/53445

Details

Source: Mitre, NVD

Published: 2009-04-09

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.12328