CVE-2013-1193

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliances (ASA) devices (affected versions not specified) Cisco Firewall Services Module (FWSM) (affected versions not specified)

Description The Secure Shell (SSH) implementation does not properly terminate sessions, allowing remote attackers to cause a denial of service (SSH service outage) by repeatedly establishing SSH connections. This could deny SSH management access to legitimate users.

Recommendations For Cisco Adaptive Security Appliances (ASA) devices, apply configuration changes to limit the number of SSH connections. For Cisco Firewall Services Module (FWSM), restrict access to the SSH function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.