CVE-2013-5479

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.2, 15.0 through 15.3

Description The DNS-over-TCP implementation in Cisco IOS, when NAT is used, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 DNS TCP stream. The Cisco IOS Software implementation of the network address translation (NAT) feature contains vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

Recommendations For versions 12.2, 15.0 through 15.3, update to a version that addresses these vulnerabilities, as software updates have been released by Cisco. At the moment, there is no information about other workarounds that mitigate these vulnerabilities.