Lucene search

[email protected]NVD:CVE-2013-1143

HistoryMar 28, 2013 - 11:55 p.m.

CVE-2013-1143

2013-03-2823:55:01

CWE-119

[email protected]

web.nvd.nist.gov

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.0%

JSON

The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957.

Affected configurations

NVD

Node

ciscoiosMatch12.2

ciscoiosMatch15.0

ciscoiosMatch15.0\(1\)se

ciscoiosMatch15.1

ciscoiosMatch15.2

ciscoiosMatch15.3

Node

ciscoios_xeMatch3.1.0s

ciscoios_xeMatch3.1.1s

ciscoios_xeMatch3.1.2s

ciscoios_xeMatch3.1.3s

ciscoios_xeMatch3.1.4s

ciscoios_xeMatch3.2.0s

ciscoios_xeMatch3.2.1s

ciscoios_xeMatch3.2.2s

ciscoios_xeMatch3.3.0s

ciscoios_xeMatch3.3.1s

ciscoios_xeMatch3.3.2s

ciscoios_xeMatch3.3.3s

ciscoios_xeMatch3.4.0s

ciscoios_xeMatch3.4.1s

ciscoios_xeMatch3.4.2s

ciscoios_xeMatch3.4.3s

Node

ciscoios_xeMatch3.5.0s

ciscoios_xeMatch3.5.1s

ciscoios_xeMatch3.5.2s

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-rsvp

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1143

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.0%

JSON

Related for NVD:CVE-2013-1143

prion1 nessus1 cve1 cisco1 cvelist1 securityvulns1