Vulnerability Description
Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 7.1(7)sp1E4 allows remote attackers to cause a denial of service (Analysis Engine process hang or device reload) via fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCue51272.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Asa 5500-X Series Ips Ssp Software | 7.1 |
| Cisco | Intrusion Prevention System | <= 7.1 |
| Cisco | Asa 5585-X | - |
| Cisco | Idsm-2 | - |
| Cisco | Ips 4345 Sensor | - |
| Cisco | Ips 4360 Sensor | - |
| Cisco | Ips 4510 Sensor | - |
| Cisco | Ips 4520 Sensor | - |
| Cisco | Ips Nme | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
FAQ
What is CVE-2013-1218?
CVE-2013-1218 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 7.1(7)sp1E4 allows remote attackers to cause a denial of service (Analysis Engine process hang or device ...
How severe is CVE-2013-1218?
CVE-2013-1218 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1218?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Asa 5500-X Series Ips Ssp Software, Cisco Intrusion Prevention System, Cisco Asa 5585-X, Cisco Idsm-2, Cisco Ips 4345 Sensor.