Multiple Cisco Products CVE-2013-1149 Denial of Service Vulnerability

Bugtraq ID:	59001
Class:	Input Validation Error
CVE:	CVE-2013-1149
Remote:	Yes
Local:	No
Published:	Apr 10 2013 12:00AM
Updated:	Apr 10 2013 12:00AM
Credit:	Cisco
Vulnerable:	Cisco Firewall Services Module (FWSM) 4.1 Cisco Firewall Services Module (FWSM) 4.0 Cisco Firewall Services Module (FWSM) 3.2 Cisco Firewall Services Module (FWSM) 3.1 Cisco ASA 5500 Series Adaptive Security Appliance 8.6 Cisco ASA 5500 Series Adaptive Security Appliance 8.4 Cisco ASA 5500 Series Adaptive Security Appliance 8.3 Cisco ASA 5500 Series Adaptive Security Appliance 8.2 Cisco ASA 5500 Series Adaptive Security Appliance 8.1 Cisco ASA 5500 Series Adaptive Security Appliance 8.0 Cisco ASA 5500 Series Adaptive Security Appliance 7.2 Cisco ASA 5500 Series Adaptive Security Appliance 7.1 Cisco ASA 5500 Series Adaptive Security Appliance 7.0
Not Vulnerable:

Multiple Cisco Products CVE-2013-1149 Denial of Service Vulnerability

Multiple Cisco products are prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to reload an affected device, denying service to legitimate users.

This issue is being tracked by Cisco Bug IDs CSCub85692 and CSCud20267.

The following products are vulnerable:

Cisco Adaptive Security Appliance
Cisco Firewall Services Module (FWSM)

Multiple Cisco Products CVE-2013-1149 Denial of Service Vulnerability

To exploit this issue attackers can use readily available network utilities.

Multiple Cisco Products CVE-2013-1149 Denial of Service Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Multiple Cisco Products CVE-2013-1149 Denial of Service Vulnerability

References:

• Cisco Homepage (Cisco)