CVE-2012-2474

Public PoC / Exploit

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 allows remote authenticated users to cause a denial of service (memory consumption and blank response page) by using the clientless WebVPN feature, aka Bug ID CSCth34278.

Weaknesses (CWE)

CWE-200

Affected Products (20)

cisco · 5500_series_adaptive_security_appliancevulnerable

cisco · adaptive_security_appliance_softwarevulnerable

cisco · adaptive_security_appliance_software

References (2)

http://www.cisco.com/web/software/280775065/45357/ASA-825-Interim-Release-Notes.html

Vendor Advisory

http://www.cisco.com/web/software/280775065/45357/ASA-825-Interim-Release-Notes.html

Vendor Advisory