CVE-2005-3788

Severity

54%

Complexity

49%

Confidentiality

115%

Race condition in Cisco Adaptive Security Appliance (ASA) 7.0(0), 7.0(2), and 7.0(4), when running with an Active/Standby configuration and when the failover LAN interface fails, allows remote attackers to cause a denial of service (standby firewall failure) by sending spoofed ARP responses from an IP address of an active firewall, which prevents the standby firewall from becoming active, aka "failover denial of service."

Race condition in Cisco Adaptive Security Appliance (ASA) 7.0(0), 7.0(2), and 7.0(4), when running with an Active/Standby configuration and when the failover LAN interface fails, allows remote attackers to cause a denial of service (standby firewall failure) by sending spoofed ARP responses from an IP address of an active firewall, which prevents the standby firewall from becoming active, aka "failover denial of service."

CVSS 2.0 Base Score 5.4. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:N/I:N/A:C).

Overview

Type

Cisco Adaptive Security Appliance (ASA) Software

First reported 19 years ago

2005-11-24 11:03:00

Last updated 6 years ago

2018-10-30 16:26:00

Affected Software

Cisco Adaptive Security Appliance (ASA) Software 7.0(0)

7.0\(0\)

Cisco Adaptive Security Appliance (ASA) Software 7.0(2)

7.0\(2\)

Cisco Adaptive Security Appliance (ASA) Software 7.0(4)

7.0\(4\)

References

20051114 [ADVISORY] CISCO ASA Failover DoS Vulnerability

20051114 RE: [ADVISORY] CISCO ASA Failover DoS Vulnerability

17550

Vendor Advisory

178

1015205

Vendor Advisory

15407

cisco-asa-failover-dos(23160)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.