Test ID:	1.3.6.1.4.1.25623.1.0.105980
Category:	CISCO
Title:	Cisco ASA GPRS Tunneling Protocol Inspection Engine DoS Vulnerability
Summary:	The GPRS Tunneling Protocol Inspection Engine of Cisco ASA;is prone to a Denial of Service vulnerability.
Description:	Summary: The GPRS Tunneling Protocol Inspection Engine of Cisco ASA is prone to a Denial of Service vulnerability. Vulnerability Insight: A vulnerability in the GPRS Tunneling Protocol (GTP) inspection engine of Cisco ASA Software could allow an unauthenticated, remote attacker to cause the reload of an affected system. The vulnerability is due to improper handling of GTP packets when sent in a specific sequence. An attacker could exploit this vulnerability by sending crafted GTP packets through an affected system. Vulnerability Impact: An unauthenticated, remote attacker could exploit this vulnerability by sending crafted GTP packets through a targeted system. An exploit could cause the system to reload, resulting in a DoS condition. Affected Software/OS: Version 8.2, 8.4, 8.7, 9.0 and 9.1 Solution: Apply the appropriate updates from Cisco. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	BugTraq ID: 70301 Common Vulnerability Exposure (CVE) ID: CVE-2014-3386 Cisco Security Advisory: 20141008 Multiple Vulnerabilities in Cisco ASA Software http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141008-asa
Copyright	This script is Copyright (C) 2015 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.