CVE-2011-3304

high

Description

Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services module in Cisco Catalyst 6500 series devices, with software 7.2 before 7.2(5.3), 8.0 before 8.0(5.25), 8.1 before 8.1(2.50), 8.2 before 8.2(5.11), 8.3 before 8.3(2.23), 8.4 before 8.4(2), and 8.5 before 8.5(1.1) allow remote attackers to cause a denial of service (device reload) via crafted MSN Instant Messenger traffic, aka Bug ID CSCtl67486.

References

http://osvdb.org/76091

http://www.cisco.com/warp/public/707/cisco-sa-20111005-asa.shtml

http://www.securityfocus.com/bid/49952

https://exchange.xforce.ibmcloud.com/vulnerabilities/70334

Details

Source: MITRE

Published: 2011-10-06

Updated: 2017-08-29

Type: CWE-399

Risk Information

CVSS v2

Base Score: 7.8

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 10

Severity: HIGH