Cisco IOS Smart Install CVE-2013-1146 Denial of Service Vulnerability

Bugtraq ID:	58746
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2013-1146
Remote:	Yes
Local:	No
Published:	Mar 27 2013 12:00AM
Updated:	Apr 09 2013 05:38PM
Credit:	csico
Vulnerable:	Cisco Ios 15.2GC Cisco IOS 15.1GC Cisco IOS 15.0SE Cisco Ios 12.2EZ Cisco Ios 12.2EY Cisco Ios 12.2EX
Not Vulnerable:	Cisco Ios 15.2S Cisco IOS 12.2(37)EX

Cisco IOS Smart Install CVE-2013-1146 Denial of Service Vulnerability

Cisco IOS is prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to cause an affected device to reload or become unresponsive, denying service to legitimate users.

This issue is being tracked by Cisco Bug ID CSCub55790.

Cisco IOS Smart Install CVE-2013-1146 Denial of Service Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Cisco IOS Smart Install CVE-2013-1146 Denial of Service Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Cisco IOS Smart Install CVE-2013-1146 Denial of Service Vulnerability

References:

• Cisco Homepage (Cisco )
  
• Cisco IOS Smart Install Configuration File Upload Remote Code Execution Vulnerab (Zero Day Initiative)
  
• Cisco IOS Software Smart Install Denial of Service Vulnerability (Cisco)