Lucene search

CiscoCVE-2013-1143

HistoryMar 28, 2013 - 11:55 p.m.

CVE-2013-1143

2013-03-2823:55:01

CWE-119

cisco

web.nvd.nist.gov

cve-2013-1143

rsvp protocol

cisco ios

ios xe

denial of service

memory access

device reload

bug id csctg39957

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.002

Percentile

55.7%

JSON

The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957.

Affected configurations

Nvd

Node

ciscoiosMatch12.2

ciscoiosMatch15.0

ciscoiosMatch15.0\(1\)se

ciscoiosMatch15.1

ciscoiosMatch15.2

ciscoiosMatch15.3

Node

ciscoios_xeMatch3.1.0s

ciscoios_xeMatch3.1.1s

ciscoios_xeMatch3.1.2s

ciscoios_xeMatch3.1.3s

ciscoios_xeMatch3.1.4s

ciscoios_xeMatch3.2.0s

ciscoios_xeMatch3.2.1s

ciscoios_xeMatch3.2.2s

ciscoios_xeMatch3.3.0s

ciscoios_xeMatch3.3.1s

ciscoios_xeMatch3.3.2s

ciscoios_xeMatch3.3.3s

ciscoios_xeMatch3.4.0s

ciscoios_xeMatch3.4.1s

ciscoios_xeMatch3.4.2s

ciscoios_xeMatch3.4.3s

Node

ciscoios_xeMatch3.5.0s

ciscoios_xeMatch3.5.1s

ciscoios_xeMatch3.5.2s

VendorProductVersionCPE
ciscoios12.2cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
ciscoios15.0cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*
ciscoios15.0(1)secpe:2.3:o:cisco:ios:15.0\(1\)se:*:*:*:*:*:*:*
ciscoios15.1cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*
ciscoios15.2cpe:2.3:o:cisco:ios:15.2:*:*:*:*:*:*:*
ciscoios15.3cpe:2.3:o:cisco:ios:15.3:*:*:*:*:*:*:*
ciscoios_xe3.1.0scpe:2.3:o:cisco:ios_xe:3.1.0s:*:*:*:*:*:*:*
ciscoios_xe3.1.1scpe:2.3:o:cisco:ios_xe:3.1.1s:*:*:*:*:*:*:*
ciscoios_xe3.1.2scpe:2.3:o:cisco:ios_xe:3.1.2s:*:*:*:*:*:*:*
ciscoios_xe3.1.3scpe:2.3:o:cisco:ios_xe:3.1.3s:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.2	cpe:2.3:o:cisco:ios:12.2:::::::*
cisco	ios	15.0	cpe:2.3:o:cisco:ios:15.0:::::::*
cisco	ios	15.0(1)se	cpe:2.3:o:cisco:ios:15.0\(1\)se:::::::*
cisco	ios	15.1	cpe:2.3:o:cisco:ios:15.1:::::::*
cisco	ios	15.2	cpe:2.3:o:cisco:ios:15.2:::::::*
cisco	ios	15.3	cpe:2.3:o:cisco:ios:15.3:::::::*
cisco	ios_xe	3.1.0s	cpe:2.3:o:cisco:ios_xe:3.1.0s:::::::*
cisco	ios_xe	3.1.1s	cpe:2.3:o:cisco:ios_xe:3.1.1s:::::::*
cisco	ios_xe	3.1.2s	cpe:2.3:o:cisco:ios_xe:3.1.2s:::::::*
cisco	ios_xe	3.1.3s	cpe:2.3:o:cisco:ios_xe:3.1.3s:::::::*