Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA 8.0.3 Vulnerable to TCP DOS Attacks?

Can anyone confirm whether the ASA 8.0.3 image is affected by denial of service (DoS)       vulnerabilities that manipulate the state of Transmission Control  Protocol       (TCP) connections?

1 ACCEPTED SOLUTION

Accepted Solutions
Super Bronze

Re: ASA 8.0.3 Vulnerable to TCP DOS Attacks?

DOS to VPN on ASA is not affected on version 8.0.3:

http://www.cisco.com/en/US/products/products_security_advisory09186a0080833166.shtml

However, you might be affected by the following vulnerabilities:

http://www.cisco.com/en/US/products/products_security_advisory09186a00809f138a.shtml

2 REPLIES
Super Bronze

Re: ASA 8.0.3 Vulnerable to TCP DOS Attacks?

DOS to VPN on ASA is not affected on version 8.0.3:

http://www.cisco.com/en/US/products/products_security_advisory09186a0080833166.shtml

However, you might be affected by the following vulnerabilities:

http://www.cisco.com/en/US/products/products_security_advisory09186a00809f138a.shtml

New Member

Re: ASA 8.0.3 Vulnerable to TCP DOS Attacks?

Halijenn, thank you for confirming that 8.0.3 is not affected by the TCP DOS vulnerability.

I also looked at the other vulnerabilities listed in the other link.  We're currently using 8.0.3(19), so it looks like we're only concerned with SIP inspections which we do not have implemented.  Again, thank you for the heads up for providing the link.

238
Views
0
Helpful
2
Replies