PT-2013-3002 · Cisco · Cisco Ips 4500+3
Published
2013-07-18
·
Updated
2013-10-11
·
CVE-2013-1243
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules versions prior to 7.1(5)E4
Cisco IPS 4500 sensors versions prior to 7.1(6)E4
Cisco IPS 4300 sensors versions prior to 7.1(5)E4
Description
The issue allows remote attackers to cause a denial of service, resulting in the MainApp process hanging, via malformed IPv4 packets.
Recommendations
For Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules versions prior to 7.1(5)E4, update to version 7.1(5)E4 or later.
For Cisco IPS 4500 sensors versions prior to 7.1(6)E4, update to version 7.1(6)E4 or later.
For Cisco IPS 4300 sensors versions prior to 7.1(5)E4, update to version 7.1(5)E4 or later.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Asa 5500-X
Cisco Ips 4300
Cisco Ips 4500
Cisco Intrusion Prevention System (Ips)