Vulnerability Description
The IPv6 implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1.3 and earlier, when NAT64 or NAT66 is enabled, does not properly process NAT rules, which allows remote attackers to cause a denial of service (device reload) via crafted packets, aka Bug ID CSCue34342.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Adaptive Security Appliance Software | <= 9.1\(3\) |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5560Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=31716Vendor Advisory
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5560Vendor Advisory
- http://tools.cisco.com/security/center/viewAlert.x?alertId=31716Vendor Advisory
FAQ
What is CVE-2013-5560?
CVE-2013-5560 is a vulnerability with a CVSS score of 5.4 (MEDIUM). The IPv6 implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1.3 and earlier, when NAT64 or NAT66 is enabled, does not properly process NAT rules, which allows remote attackers to cau...
How severe is CVE-2013-5560?
CVE-2013-5560 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5560?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Adaptive Security Appliance Software.