CVE-2013-1218
Severity Score
7.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 7.1(7)sp1E4 allows remote attackers to cause a denial of service (Analysis Engine process hang or device reload) via fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCue51272.
Cisco Intrusion Prevention System (IPS) Software en ASA 5500-X IPS-SSP anterior a v7.1(7)sp1E4 permite a atacantes remotos causar una denegaciĆ³n de servicio (cuelgue del proceso Analysis Engine o reinicio del dispositivo) mediante paquetes (1) IPv4 o (2) IPv6 fragmentados, tambiĆ©n conocido como Bug ID CSCue51272.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-01-11 CVE Reserved
- 2013-07-18 CVE Published
- 2024-09-17 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130717-ips | 2013-07-18 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Asa 5500-x Series Ips Ssp Software Search vendor "Cisco" for product "Asa 5500-x Series Ips Ssp Software" | 7.1 Search vendor "Cisco" for product "Asa 5500-x Series Ips Ssp Software" and version "7.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Intrusion Prevention System Search vendor "Cisco" for product "Intrusion Prevention System" | <= 7.1 Search vendor "Cisco" for product "Intrusion Prevention System" and version " <= 7.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asa 5585-x Search vendor "Cisco" for product "Asa 5585-x" | - | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Idsm-2 Search vendor "Cisco" for product "Idsm-2" | - | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ips 4345 Sensor Search vendor "Cisco" for product "Ips 4345 Sensor" | - | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ips 4360 Sensor Search vendor "Cisco" for product "Ips 4360 Sensor" | - | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ips 4510 Sensor Search vendor "Cisco" for product "Ips 4510 Sensor" | - | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ips 4520 Sensor Search vendor "Cisco" for product "Ips 4520 Sensor" | - | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Ips Nme Search vendor "Cisco" for product "Ips Nme" | - | - |
Affected
| ||||||