CVE-2013-3415

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 8.4.x before 8.4(3) Cisco Adaptive Security Appliance (ASA) Software versions 8.6.x before 8.6(1.3)

Description The issue arises from improper memory management when an AnyConnect SSL VPN client disconnects, allowing remote attackers to cause a denial of service. This can result in memory consumption, forwarding outage, or system hang by sending packets to the disconnected machine's IP address.

Recommendations For versions 8.4.x before 8.4(3), update to version 8.4(3) or later to resolve the issue. For versions 8.6.x before 8.6(1.3), update to version 8.6(1.3) or later to resolve the issue.