Lucene search

CiscoCVE-2013-5472

HistorySep 27, 2013 - 10:08 a.m.

CVE-2013-5472

2013-09-2710:08:04

CWE-20

cisco

web.nvd.nist.gov

ntp

cisco ios

denial of service

vulnerability

cve-2013-5472

nvd

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

49.5%

JSON

The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226.

Affected configurations

Nvd

Node

ciscoios_xeMatch2.1.0

ciscoios_xeMatch2.1.1

ciscoios_xeMatch2.1.2

ciscoios_xeMatch2.2.1

ciscoios_xeMatch2.2.2

ciscoios_xeMatch2.2.3

ciscoios_xeMatch2.3.0

ciscoios_xeMatch2.3.1

ciscoios_xeMatch2.3.1t

ciscoios_xeMatch2.3.2

ciscoios_xeMatch2.4.0

ciscoios_xeMatch2.4.1

ciscoios_xeMatch2.4.2

ciscoios_xeMatch2.4.3

ciscoios_xeMatch2.4.4

ciscoios_xeMatch2.5.0

ciscoios_xeMatch2.5.1

ciscoios_xeMatch2.5.2

ciscoios_xeMatch2.6.0

ciscoios_xeMatch2.6.1

ciscoios_xeMatch2.6.2

ciscoios_xeMatch3.1.0s

ciscoios_xeMatch3.1.0sg

ciscoios_xeMatch3.1.1s

ciscoios_xeMatch3.1.1sg

ciscoios_xeMatch3.1.2s

ciscoios_xeMatch3.1.3s

ciscoios_xeMatch3.1.4s

ciscoios_xeMatch3.2.00.xo.15.0\(2\)xo

ciscoios_xeMatch3.2.0s

ciscoios_xeMatch3.2.0sg

ciscoios_xeMatch3.2.0xo

ciscoios_xeMatch3.2.1s

ciscoios_xeMatch3.2.1sg

ciscoios_xeMatch3.2.2s

ciscoios_xeMatch3.2.2sg

ciscoios_xeMatch3.2.3sg

ciscoios_xeMatch3.2.4sg

ciscoios_xeMatch3.3.0s

ciscoios_xeMatch3.3.0sg

Node

ciscoiosMatch12.0

ciscoiosMatch12.1

ciscoiosMatch12.2

ciscoiosMatch12.3

ciscoiosMatch12.4

ciscoiosMatch15.0

ciscoiosMatch15.1

VendorProductVersionCPE
ciscoios_xe2.1.0cpe:2.3:o:cisco:ios_xe:2.1.0:*:*:*:*:*:*:*
ciscoios_xe2.1.1cpe:2.3:o:cisco:ios_xe:2.1.1:*:*:*:*:*:*:*
ciscoios_xe2.1.2cpe:2.3:o:cisco:ios_xe:2.1.2:*:*:*:*:*:*:*
ciscoios_xe2.2.1cpe:2.3:o:cisco:ios_xe:2.2.1:*:*:*:*:*:*:*
ciscoios_xe2.2.2cpe:2.3:o:cisco:ios_xe:2.2.2:*:*:*:*:*:*:*
ciscoios_xe2.2.3cpe:2.3:o:cisco:ios_xe:2.2.3:*:*:*:*:*:*:*
ciscoios_xe2.3.0cpe:2.3:o:cisco:ios_xe:2.3.0:*:*:*:*:*:*:*
ciscoios_xe2.3.1cpe:2.3:o:cisco:ios_xe:2.3.1:*:*:*:*:*:*:*
ciscoios_xe2.3.1tcpe:2.3:o:cisco:ios_xe:2.3.1t:*:*:*:*:*:*:*
ciscoios_xe2.3.2cpe:2.3:o:cisco:ios_xe:2.3.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	2.1.0	cpe:2.3:o:cisco:ios_xe:2.1.0:::::::*
cisco	ios_xe	2.1.1	cpe:2.3:o:cisco:ios_xe:2.1.1:::::::*
cisco	ios_xe	2.1.2	cpe:2.3:o:cisco:ios_xe:2.1.2:::::::*
cisco	ios_xe	2.2.1	cpe:2.3:o:cisco:ios_xe:2.2.1:::::::*
cisco	ios_xe	2.2.2	cpe:2.3:o:cisco:ios_xe:2.2.2:::::::*
cisco	ios_xe	2.2.3	cpe:2.3:o:cisco:ios_xe:2.2.3:::::::*
cisco	ios_xe	2.3.0	cpe:2.3:o:cisco:ios_xe:2.3.0:::::::*
cisco	ios_xe	2.3.1	cpe:2.3:o:cisco:ios_xe:2.3.1:::::::*
cisco	ios_xe	2.3.1t	cpe:2.3:o:cisco:ios_xe:2.3.1t:::::::*
cisco	ios_xe	2.3.2	cpe:2.3:o:cisco:ios_xe:2.3.2:::::::*