CVE-2013-1166 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2013-1166

Cisco IOS XE 3.2 through 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR), when VRF-aware NAT and SIP ALG are enabled, allows remote attackers to cause a denial of service (card reload) by sending many SIP packets, aka Bug ID CSCuc65609.

Published: Apr 11, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-1166
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
cisco / ios_xe	3.2.0s	3.2.0s.x
cisco / ios_xe	3.2.1s	3.2.1s.x
cisco / ios_xe	3.2.2s	3.2.2s.x
cisco / ios_xe	3.3.0s	3.3.0s.x
cisco / ios_xe	3.3.1s	3.3.1s.x
cisco / ios_xe	3.3.2s	3.3.2s.x
cisco / ios_xe	3.4.0as	3.4.0as.x
cisco / ios_xe	3.4.0s	3.4.0s.x
cisco / ios_xe	3.4.1s	3.4.1s.x
cisco / ios_xe	3.4.2s	3.4.2s.x
cisco / ios_xe	3.4.3s	3.4.3s.x
cisco / ios_xe	3.4.4s	3.4.4s.x
cisco / ios_xe	3.7.0s	3.7.0s.x

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-asr1000