CVE-2013-5557

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 9.1(.2) and earlier

Description The issue concerns the Proxy Bypass Content Rewriter feature in the WebVPN subsystem, allowing remote authenticated users to cause a denial of service, which could result in a device crash or error-recovery event. This can be triggered via an HTTP request that causes a rewrite.

Recommendations For versions 9.1(.2) and earlier, consider disabling the Proxy Bypass Content Rewriter feature in the WebVPN subsystem as a temporary workaround to prevent potential denial of service attacks until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.