Lucene search

CiscoCISCO-SA-20130626-NGFW

HistoryJun 26, 2013 - 4:00 p.m.

Cisco ASA Next-Generation Firewall Fragmented Traffic Denial of Service Vulnerability

2013-06-2616:00:00

tools.cisco.com

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

49.5%

JSON

Cisco ASA Next-Generation Firewall (NGFW) Services contains a Fragmented Traffic Denial of Service (DoS) vulnerability.

Successful exploitation of this vulnerability on the Cisco ASA NGFW could cause the device to reload or stop processing user traffic that has been redirected by the parent Cisco ASA to the ASA NGFW module for further inspection.

There are no workarounds for this vulnerability, but mitigations are available.

Cisco has released software updates that address this vulnerability. This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-ngfw[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-ngfw”]

Affected configurations

Vulners

Node

ciscoasa_cx_context-aware_security_softwareMatchany

VendorProductVersionCPE
ciscoasa_cx_context-aware_security_softwareanycpe:2.3:a:cisco:asa_cx_context-aware_security_software:any:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	asa_cx_context-aware_security_software	any	cpe:2.3:a:cisco:asa_cx_context-aware_security_software:any:::::::*

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-ngfw

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.001

Percentile

49.5%

JSON

Related for CISCO-SA-20130626-NGFW