CVE-2013-1148

The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S allows remote attackers to cause a denial of service (device reload) via crafted (1) IPv4 or (2) IPv6 IP SLA packets on UDP port 1167, aka Bug ID CSCuc72594.

Published: Mar 29, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-1148
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
cisco / ios	15.2	15.2.x
cisco / ios_xe	3.4.1s	3.4.1s.x
cisco / ios_xe	3.3.3s	3.3.3s.x
cisco / ios_xe	3.3.1s	3.3.1s.x
cisco / ios_xe	3.2.0s	3.2.0s.x
cisco / ios_xe	3.3.2s	3.3.2s.x
cisco / ios_xe	3.4.3s	3.4.3s.x
cisco / ios_xe	3.2.1s	3.2.1s.x
cisco / ios_xe	3.1.2s	3.1.2s.x
cisco / ios_xe	3.4.0s	3.4.0s.x
cisco / ios_xe	3.1.1s	3.1.1s.x
cisco / ios_xe	3.2.2s	3.2.2s.x
cisco / ios_xe	3.4.2s	3.4.2s.x
cisco / ios_xe	3.1.0s	3.1.0s.x
cisco / ios_xe	3.1.4s	3.1.4s.x
cisco / ios_xe	3.3.0s	3.3.0s.x
cisco / ios_xe	3.1.3s	3.1.3s.x
cisco / ios_xe	3.5.0s	3.5.0s.x
cisco / ios_xe	3.5.2s	3.5.2s.x
cisco / ios_xe	3.5.1s	3.5.1s.x

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-ipsla

Vulnerability Database

289,599

CVE-2013-1148