Lucene search

CiscoCVE-2013-5512

HistoryOct 13, 2013 - 10:20 a.m.

CVE-2013-5512

2013-10-1310:20:04

CWE-362

cisco

web.nvd.nist.gov

cve-2013-5512

cisco

asa

software

http

dpi

race condition

denial of service

vulnerability

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

43.4%

JSON

Race condition in the HTTP Deep Packet Inspection (DPI) feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8.2(5.46), 8.3.x before 8.3(2.39), 8.4.x before 8.4(5.5), 8.5.x before 8.5(1.18), 8.6.x before 8.6(1.12), 8.7.x before 8.7(1.4), 9.0.x before 9.0(1.4), and 9.1.x before 9.1(1.2), in certain conditions involving the spoof-server option or ActiveX or Java response inspection, allows remote attackers to cause a denial of service (device reload) via a crafted HTTP response, aka Bug ID CSCud37992.

Affected configurations

Nvd

Node

ciscoadaptive_security_appliance_softwareMatch8.2

ciscoadaptive_security_appliance_softwareMatch8.2\(1\)

ciscoadaptive_security_appliance_softwareMatch8.2\(2\)

ciscoadaptive_security_appliance_softwareMatch8.2\(3\)

ciscoadaptive_security_appliance_softwareMatch8.2\(3.9\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4.1\)

ciscoadaptive_security_appliance_softwareMatch8.2\(4.4\)

ciscoadaptive_security_appliance_softwareMatch8.2\(5\)

ciscoadaptive_security_appliance_softwareMatch8.2\(5.35\)

ciscoadaptive_security_appliance_softwareMatch8.2\(5.38\)

ciscoadaptive_security_appliance_softwareMatch8.3\(1\)

ciscoadaptive_security_appliance_softwareMatch8.3\(2\)

ciscoadaptive_security_appliance_softwareMatch8.3\(2.34\)

ciscoadaptive_security_appliance_softwareMatch8.3\(2.37\)

ciscoadaptive_security_appliance_softwareMatch8.4

ciscoadaptive_security_appliance_softwareMatch8.4\(1\)

ciscoadaptive_security_appliance_softwareMatch8.4\(1.11\)

ciscoadaptive_security_appliance_softwareMatch8.4\(2\)

ciscoadaptive_security_appliance_softwareMatch8.4\(2.11\)

ciscoadaptive_security_appliance_softwareMatch8.4\(3\)

ciscoadaptive_security_appliance_softwareMatch8.4\(4.11\)

ciscoadaptive_security_appliance_softwareMatch8.4\(5\)

ciscoadaptive_security_appliance_softwareMatch8.5

ciscoadaptive_security_appliance_softwareMatch8.5\(1\)

ciscoadaptive_security_appliance_softwareMatch8.5\(1.17\)

ciscoadaptive_security_appliance_softwareMatch8.6

ciscoadaptive_security_appliance_softwareMatch8.6\(1\)

ciscoadaptive_security_appliance_softwareMatch8.6\(1.3\)

ciscoadaptive_security_appliance_softwareMatch8.6\(1.10\)

ciscoadaptive_security_appliance_softwareMatch8.7\(1.3\)

ciscoadaptive_security_appliance_softwareMatch9.0

ciscoadaptive_security_appliance_softwareMatch9.1

VendorProductVersionCPE
ciscoadaptive_security_appliance_software8.2cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(1)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(2)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(3)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(3.9)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(4)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(4.1)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(4.4)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(5)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):*:*:*:*:*:*:*
ciscoadaptive_security_appliance_software8.2(5.35)cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5.35\):*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	adaptive_security_appliance_software	8.2	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2:::::::*
cisco	adaptive_security_appliance_software	8.2(1)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(1\):::::::*
cisco	adaptive_security_appliance_software	8.2(2)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(2\):::::::*
cisco	adaptive_security_appliance_software	8.2(3)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3\):::::::*
cisco	adaptive_security_appliance_software	8.2(3.9)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(3.9\):::::::*
cisco	adaptive_security_appliance_software	8.2(4)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4\):::::::*
cisco	adaptive_security_appliance_software	8.2(4.1)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.1\):::::::*
cisco	adaptive_security_appliance_software	8.2(4.4)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(4.4\):::::::*
cisco	adaptive_security_appliance_software	8.2(5)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5\):::::::*
cisco	adaptive_security_appliance_software	8.2(5.35)	cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2\(5.35\):::::::*