PT-2013-5633 · Cisco · Cisco Ios

Published

2013-11-13

Updated

2013-11-14

CVE-2013-5552

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Cisco IOS versions prior to 12.4(24)MDB9 on Content Services Gateway (CSG) devices

Description The issue allows remote attackers to bypass intended access restrictions via a crafted series of packets due to improper implementation of the parse error drop feature.

Recommendations For versions prior to 12.4(24)MDB9, update to a version that properly implements the parse error drop feature to prevent access restriction bypass.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2013-5552

Affected Products

Cisco Ios

PT-2013-5633 · Cisco · Cisco Ios

CVE-2013-5552

Weakness Enumeration

Related Identifiers

Affected Products

References · 3