Vulnerability Description
The IP stack in Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules before 7.1(5)E4, IPS 4500 sensors before 7.1(6)E4, and IPS 4300 sensors before 7.1(5)E4 allows remote attackers to cause a denial of service (MainApp process hang) via malformed IPv4 packets, aka Bug ID CSCtx18596.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Asa 5500-X Series Ips Ssp Software | 7.1 |
| Cisco | Intrusion Prevention System | <= 7.1 |
| Cisco | Asa 5585-X | - |
| Cisco | Idsm-2 | - |
| Cisco | Ips 4345 Sensor | - |
| Cisco | Ips 4360 Sensor | - |
| Cisco | Ips 4510 Sensor | - |
| Cisco | Ips 4520 Sensor | - |
| Cisco | Ips Nme | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
FAQ
What is CVE-2013-1243?
CVE-2013-1243 is a vulnerability with a CVSS score of 7.8 (HIGH). The IP stack in Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software and hardware modules before 7.1(5)E4, IPS 4500 sensors before 7.1(6)E4, and IPS 4300 sensors before 7.1(...
How severe is CVE-2013-1243?
CVE-2013-1243 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1243?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Asa 5500-X Series Ips Ssp Software, Cisco Intrusion Prevention System, Cisco Asa 5585-X, Cisco Idsm-2, Cisco Ips 4345 Sensor.