Lucene search

K
ciscoCiscoCISCO-SA-20130925-NAT
HistorySep 25, 2013 - 4:00 p.m.

Cisco IOS Software Network Address Translation Vulnerabilities

2013-09-2516:00:00
tools.cisco.com
20
cisco
nat
network address translation
vulnerabilities
denial of service
software updates
dos
remote attacker
security advisory
cisco event response

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

53.2%

The Cisco IOS Software implementation of the network address translation (NAT) feature contains three vulnerabilities when translating IP packets that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are not available.

This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-nat[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-nat”]

Note: The September 25, 2013, Cisco IOS Software Security Advisory bundled publication includes eight Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Each Cisco IOS Software Security Advisory lists the Cisco IOS Software releases that correct the vulnerability or vulnerabilities detailed in the advisory as well as the Cisco IOS Software releases that correct all Cisco IOS Software vulnerabilities in the September 2013 bundled publication.

Individual publication links are in “Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication” at the following link:

http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep13.html[“http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_sep13.html”]

Affected configurations

Vulners
Node
ciscoiosMatch12.2sxi
OR
ciscoiosMatch15.0m
OR
ciscoiosMatch15.1t
OR
ciscoiosMatch15.1xb
OR
ciscoiosMatch15.3t
OR
ciscoiosMatch15.1m
OR
ciscoiosMatch15.1gc
OR
ciscoiosMatch15.0sy
OR
ciscoiosMatch12.2sxj
OR
ciscoiosMatch15.2m
OR
ciscoiosMatch15.2gc
OR
ciscoiosMatch15.2e
OR
ciscoiosMatch15.2jb
OR
ciscoiosMatch15.2jax
OR
ciscoiosMatch15.3ja
OR
ciscoiosMatch15.6t
OR
ciscoiosMatch12.2\(33\)sxi7
OR
ciscoiosMatch15.0\(1\)m6
OR
ciscoiosMatch15.0\(1\)m7
OR
ciscoiosMatch15.0\(1\)m6a
OR
ciscoiosMatch15.1\(3\)t2
OR
ciscoiosMatch15.1\(3\)t3
OR
ciscoiosMatch15.1\(2\)t4
OR
ciscoiosMatch15.1\(3\)t
OR
ciscoiosMatch15.1\(3\)t1
OR
ciscoiosMatch15.1\(3\)t4
OR
ciscoiosMatch15.1\(4\)xb4
OR
ciscoiosMatch15.1\(4\)xb5
OR
ciscoiosMatch15.1\(4\)xb6
OR
ciscoiosMatch15.1\(4\)xb5a
OR
ciscoiosMatch15.1\(4\)xb7
OR
ciscoiosMatch15.1\(4\)xb8
OR
ciscoiosMatch15.1\(4\)xb8a
OR
ciscoiosMatch15.3\(1\)t
OR
ciscoiosMatch15.3\(2\)t
OR
ciscoiosMatch15.3\(1\)t1
OR
ciscoiosMatch15.1\(4\)m3
OR
ciscoiosMatch15.1\(4\)m
OR
ciscoiosMatch15.1\(4\)m1
OR
ciscoiosMatch15.1\(4\)m2
OR
ciscoiosMatch15.1\(4\)m6
OR
ciscoiosMatch15.1\(4\)m5
OR
ciscoiosMatch15.1\(4\)m4
OR
ciscoiosMatch15.1\(4\)m0a
OR
ciscoiosMatch15.1\(4\)m0b
OR
ciscoiosMatch15.1\(4\)m3a
OR
ciscoiosMatch15.1\(4\)gc
OR
ciscoiosMatch15.1\(4\)gc1
OR
ciscoiosMatch15.0\(1\)sy
OR
ciscoiosMatch12.2\(33\)sxj1
OR
ciscoiosMatch15.2\(4\)m
OR
ciscoiosMatch15.2\(4\)m1
OR
ciscoiosMatch15.2\(4\)m2
OR
ciscoiosMatch15.2\(4\)m3
OR
ciscoiosMatch15.2\(1\)gc
OR
ciscoiosMatch15.2\(1\)gc1
OR
ciscoiosMatch15.2\(1\)gc2
OR
ciscoiosMatch15.2\(2\)gc
OR
ciscoiosMatch15.2\(3\)gc
OR
ciscoiosMatch15.2\(3\)gc1
OR
ciscoiosMatch15.2\(4m\)e1
OR
ciscoiosMatch15.2\(2\)jb1
OR
ciscoiosMatch15.2\(2\)jb
OR
ciscoiosMatch15.2\(2\)jax
OR
ciscoiosMatch15.3\(3\)ja8
OR
ciscoiosMatch15.6\(2\)t
VendorProductVersionCPE
ciscoios12.2sxicpe:2.3:o:cisco:ios:12.2sxi:*:*:*:*:*:*:*
ciscoios15.0mcpe:2.3:o:cisco:ios:15.0m:*:*:*:*:*:*:*
ciscoios15.1tcpe:2.3:o:cisco:ios:15.1t:*:*:*:*:*:*:*
ciscoios15.1xbcpe:2.3:o:cisco:ios:15.1xb:*:*:*:*:*:*:*
ciscoios15.3tcpe:2.3:o:cisco:ios:15.3t:*:*:*:*:*:*:*
ciscoios15.1mcpe:2.3:o:cisco:ios:15.1m:*:*:*:*:*:*:*
ciscoios15.1gccpe:2.3:o:cisco:ios:15.1gc:*:*:*:*:*:*:*
ciscoios15.0sycpe:2.3:o:cisco:ios:15.0sy:*:*:*:*:*:*:*
ciscoios12.2sxjcpe:2.3:o:cisco:ios:12.2sxj:*:*:*:*:*:*:*
ciscoios15.2mcpe:2.3:o:cisco:ios:15.2m:*:*:*:*:*:*:*
Rows per page:
1-10 of 661

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.002

Percentile

53.2%

Related for CISCO-SA-20130925-NAT