The TCP reassembly feature in Cisco IOS XE 3.7 before 3.7.3S and 3.8 before 3.8.1S on 1000 ASR devices allows remote attackers to cause a denial of service (device reload) via large TCP packets that are processed by the (1) NAT or (2) ALG component, aka Bug ID CSCud72509.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131030-asr1000 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2013-10-31 14:55
Updated : 2021-10-05 07:51
NVD link : CVE-2013-5546
Mitre link : CVE-2013-5546
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
cisco
- asr_1002
- ios_xe
- asr_1006
- asr_1023_router
- asr_1004
- asr_1002-x
- asr_1001