CVE-2013-1218

2022-10-0316:14:48

CWE-119

[email protected]

web.nvd.nist.gov

cisco

ips

software

denial of service

vulnerability

cve-2013-1218

asa 5500-x

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.6%

JSON

Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 7.1(7)sp1E4 allows remote attackers to cause a denial of service (Analysis Engine process hang or device reload) via fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCue51272.

Affected configurations

NVD

Node

ciscoasa_5500-x_series_ips_ssp_softwareMatch7.1

ciscointrusion_prevention_systemRange≤7.1

ciscoasa_5585-xMatch-

ciscoidsm-2Match-

ciscoips_4345_sensorMatch-

ciscoips_4360_sensorMatch-

ciscoips_4510_sensorMatch-

ciscoips_4520_sensorMatch-

ciscoips_nmeMatch-

CPENameOperatorVersion
cisco:asa_5500-x_series_ips_ssp_softwarecisco asa 5500-x series ips ssp softwareeq7.1
cisco:intrusion_prevention_systemcisco intrusion prevention systemle7.1
cisco:asa_5585-xcisco asa 5585-xeq-
cisco:idsm-2cisco idsm-2eq-
cisco:ips_4345_sensorcisco ips 4345 sensoreq-
cisco:ips_4360_sensorcisco ips 4360 sensoreq-
cisco:ips_4510_sensorcisco ips 4510 sensoreq-
cisco:ips_4520_sensorcisco ips 4520 sensoreq-
cisco:ips_nmecisco ips nmeeq-

CPE	Name	Operator	Version
cisco:asa_5500-x_series_ips_ssp_software	cisco asa 5500-x series ips ssp software	eq	7.1
cisco:intrusion_prevention_system	cisco intrusion prevention system	le	7.1
cisco:asa_5585-x	cisco asa 5585-x	eq	-
cisco:idsm-2	cisco idsm-2	eq	-
cisco:ips_4345_sensor	cisco ips 4345 sensor	eq	-
cisco:ips_4360_sensor	cisco ips 4360 sensor	eq	-
cisco:ips_4510_sensor	cisco ips 4510 sensor	eq	-
cisco:ips_4520_sensor	cisco ips 4520 sensor	eq	-
cisco:ips_nme	cisco ips nme	eq	-