CVE-2013-5560

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 9.1.3 and earlier

Description The issue is related to the IPv6 implementation in Cisco ASA Software, specifically when NAT64 or NAT66 is enabled. It does not properly process NAT rules, allowing remote attackers to cause a denial of service (device reload) via crafted packets. This could allow an unauthenticated, remote attacker to cause a reload of an affected system.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software versions 9.1.3 and earlier, consider disabling NAT64 or NAT66 until a patch is available to prevent potential denial of service attacks. As a temporary workaround, restrict access to the affected system to minimize the risk of exploitation.