PT-2013-5627 · Cisco · Cisco Ios Xe

Publicado

2013-10-30

Atualizado

2021-10-05

CVE-2013-5546

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions 3.7 before 3.7.3S Cisco IOS XE versions 3.8 before 3.8.1S

Description The issue allows remote attackers to cause a denial of service via large TCP packets processed by the NAT or ALG component. Successful exploitation could trigger a reload of the embedded services processors card or the route processor card, causing an interruption of services. Repeated exploitation could result in a sustained denial of service condition.

Recommendations For Cisco IOS XE versions 3.7 before 3.7.3S, update to version 3.7.3S or later. For Cisco IOS XE versions 3.8 before 3.8.1S, update to version 3.8.1S or later.

Correção

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2013-5546

Produtos afetados

Cisco Ios Xe

PT-2013-5627 · Cisco · Cisco Ios Xe

CVE-2013-5546

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3