CVE-2013-1149

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) devices versions 7.x through 7.2(5.9) Cisco Adaptive Security Appliances (ASA) devices versions 8.0 through 8.0(5.27) Cisco Adaptive Security Appliances (ASA) devices versions 8.1 through 8.2(5.34) Cisco Adaptive Security Appliances (ASA) devices versions 8.3 through 8.3(2.33) Cisco Adaptive Security Appliances (ASA) devices versions 8.4 through 8.4(4.10) Cisco Adaptive Security Appliances (ASA) devices versions 8.6 through 8.6(1.9) Cisco Adaptive Security Appliances (ASA) devices versions 8.7 through 8.7(1.2) Cisco Firewall Services Module (FWSM) software versions 3.1 through 3.2(24) Cisco Firewall Services Module (FWSM) software versions 4.0 through 4.1(11)

Description The issue allows remote attackers to cause a denial of service (device reload) via a crafted IKEv1 message.

Recommendations For Cisco Adaptive Security Appliances (ASA) devices versions 7.x through 7.2(5.9), update to version 7.2(5.10) or later. For Cisco Adaptive Security Appliances (ASA) devices versions 8.0 through 8.0(5.27), update to version 8.0(5.28) or later. For Cisco Adaptive Security Appliances (ASA) devices versions 8.1 through 8.2(5.34), update to version 8.2(5.35) or later. For Cisco Adaptive Security Appliances (ASA) devices versions 8.3 through 8.3(2.33), update to version 8.3(2.34) or later. For Cisco Adaptive Security Appliances (ASA) devices versions 8.4 through 8.4(4.10), update to version 8.4(4.11) or later. For Cisco Adaptive Security Appliances (ASA) devices versions 8.6 through 8.6(1.9), update to version 8.6(1.10) or later. For Cisco Adaptive Security Appliances (ASA) devices versions 8.7 through 8.7(1.2), update to version 8.7(1.3) or later. For Cisco Firewall Services Module (FWSM) software versions 3.1 through 3.2(24), update to version 3.2(24.1) or later. For Cisco Firewall Services Module (FWSM) software versions 4.0 through 4.1(11), update to version 4.1(11.1) or later.