Denial of Service Vulnerability in Cisco Intrusion Prevention System Software
CVE-2013-1243

Currently unrated

Key Information:

Vendor: Cisco
Status: Ips 4520 Sensor; Asa 5585-x; Ips 4345 Sensor; Ips Nme
Vendor: CVE Published:; 18 July 2013

Summary

The IP stack in Cisco's Intrusion Prevention System Software is susceptible to a denial of service attack. This vulnerability allows remote attackers to disrupt the service by sending specifically crafted malformed IPv4 packets, leading to a hang in the MainApp process. The issue affects multiple versions of the ASA 5500-X IPS-SSP software, along with IPS 4500 and IPS 4300 sensors, prior to their respective patches. For additional details on this security concern, refer to Cisco's advisory.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 18, 2013