NuytsTech Security

CVE-2014-3407

by ·

The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.3(.2) and earlier does not properly allocate memory blocks during HTTP packet handling, which allows remote attackers to cause a denial of service (memory consumption) via crafted packets, aka Bug ID CSCuq68888.

Date published : 2014-11-27

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3407

http://tools.cisco.com/security/center/viewAlert.x?alertId=36542

Tags: