CVE-2013-3463

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified)

Description The issue is related to the protocol-inspection feature on Cisco Adaptive Security Appliances (ASA) devices, which does not properly implement the idle timeout. This allows remote attackers to cause a denial of service (connection-table exhaustion) via crafted requests that use an inspected protocol. The vulnerability could allow an unauthenticated, remote attacker to fill the connection table in the ASA, preventing new connections to be established through the device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.