TCP Reassembly Vulnerability in Cisco IOS XE Affects ASR Devices

CVE-2013-5546

What is CVE-2013-5546?

A vulnerability exists in the TCP reassembly feature of Cisco IOS XE, impacting versions prior to 3.7.3S and 3.8.1S on ASR 1000 Series devices. This flaw permits remote attackers to exploit large TCP packets, potentially leading to a denial of service through device reloads. This issue is associated with the NAT and ALG components within the system, and it has a known reference marked as Bug ID CSCud72509. It emphasizes the need for timely updates to mitigate potential risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References