Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20130410-ASA
HistoryApr 10, 2013 - 4:00 p.m.

Multiple Vulnerabilities in Cisco ASA Software

2013-04-1016:00:00
tools.cisco.com
22

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

55.7%

JSON

Cisco ASA Software is affected by the following vulnerabilities:

IKE Version 1 Denial of Service Vulnerability 
Crafted URL Denial of Service Vulnerability 
Denial of Service During Validation of Crafted Certificates 
DNS Inspection Denial of Service Vulnerability

These vulnerabilities are independent of each other; a release that is affected by one of the vulnerabilities may not be affected by the others.

Successful exploitation of any of these vulnerabilities may result in a reload of an affected device, leading to a denial of service (DoS) condition.

Cisco has released software updates that address these vulnerabilities. Workarounds are available for some of these vulnerabilities.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-asa[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-asa”]

Note: The Cisco Firewall Services Module (FWSM) for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers may be affected by some of the vulnerabilities listed above. A separate Cisco Security Advisory has been published to disclose the vulnerabilities that affect the Cisco FWSM. This advisory is available at

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-fwsm[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-fwsm”]

Affected configurations

Vulners
Node
ciscofirewall_services_moduleMatchany
OR
ciscoadaptive_security_appliance_softwareMatch8.2
OR
ciscoadaptive_security_appliance_softwareMatch8.4
OR
ciscoadaptive_security_appliance_softwareMatch9.0
OR
ciscofirewall_services_moduleMatchany
OR
ciscoadaptive_security_appliance_softwareMatch8.2.1
OR
ciscoadaptive_security_appliance_softwareMatch8.2.2
OR
ciscoadaptive_security_appliance_softwareMatch8.2.3
OR
ciscoadaptive_security_appliance_softwareMatch8.2.4
OR
ciscoadaptive_security_appliance_softwareMatch8.2.5
OR
ciscoadaptive_security_appliance_softwareMatch8.4.1
OR
ciscoadaptive_security_appliance_softwareMatch8.4.2
OR
ciscoadaptive_security_appliance_softwareMatch8.4.3
OR
ciscoadaptive_security_appliance_softwareMatch8.4.4
OR
ciscoadaptive_security_appliance_softwareMatch8.4.5
OR
ciscoadaptive_security_appliance_softwareMatch9.0.1
OR
ciscoadaptive_security_appliance_softwareMatch9.0.2
VendorProductVersionCPE
ciscofirewall_services_moduleanycpe:2.3:h:cisco:firewall_services_module:any:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.4cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software9.0cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2.1cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2.2cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2.3cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.3:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2.4cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.4:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2.5cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.4.1cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 161

Related

nessus 2
securityvulns 1
prion 4
cve 4
nvd 4
cvelist 4
cisco 1
nessus
nessus
Cisco ASA Multiple Vulnerabilities (cisco-sa-20130410-asa)
2013-04-11 00:00:00
Multiple Vulnerabilities in Cisco Firewall Services Module Software (cisco-sa-20130410-fwsm)
2013-09-17 00:00:00
securityvulns
securityvulns
Cisco ASA / FWSM multiple security vulnerabilities
2013-04-22 00:00:00
prion
prion
Code injection
2013-04-11 10:55:00
Design/Logic Flaw
2013-04-11 10:55:00
Authentication flaw
2013-04-11 10:55:00
cve
cve
CVE-2013-1150
2013-04-11 10:55:01
CVE-2013-1152
2013-04-11 10:55:01
CVE-2013-1151
2013-04-11 10:55:01
nvd
nvd
CVE-2013-1150
2013-04-11 10:55:01
CVE-2013-1152
2013-04-11 10:55:01
CVE-2013-1149
2013-04-11 10:55:01
cvelist
cvelist
CVE-2013-1150
2013-04-11 10:00:00
CVE-2013-1152
2013-04-11 10:00:00
CVE-2013-1151
2013-04-11 10:00:00
cisco
cisco
Multiple Vulnerabilities in Cisco Firewall Services Module Software
2013-04-10 16:00:00

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

55.7%

JSON
Related for CISCO-SA-20130410-ASA
nessus2securityvulns1prion4cve4nvd4cvelist4cisco1