CVE Vulnerabilities

CVE-2013-5552

Published: Nov 13, 2013 | Modified: Nov 14, 2013
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the parse error drop feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID CSCug90143.

Affected Software

Name Vendor Start Version End Version
Ios Cisco * 12.4(24)mdb14
Ios Cisco 12.4(24)md 12.4(24)md
Ios Cisco 12.4(24)md1 12.4(24)md1
Ios Cisco 12.4(24)md2 12.4(24)md2
Ios Cisco 12.4(24)md3 12.4(24)md3
Ios Cisco 12.4(24)md4 12.4(24)md4
Ios Cisco 12.4(24)md5 12.4(24)md5
Ios Cisco 12.4(24)md5a 12.4(24)md5a
Ios Cisco 12.4(24)md6 12.4(24)md6
Ios Cisco 12.4(24)md7 12.4(24)md7
Ios Cisco 12.4(24)md8 12.4(24)md8
Ios Cisco 12.4(24)md9 12.4(24)md9
Ios Cisco 12.4(24)mda6 12.4(24)mda6
Ios Cisco 12.4(24)mda7 12.4(24)mda7
Ios Cisco 12.4(24)mda8 12.4(24)mda8
Ios Cisco 12.4(24)mda9 12.4(24)mda9
Ios Cisco 12.4(24)mda10 12.4(24)mda10
Ios Cisco 12.4(24)mda11 12.4(24)mda11
Ios Cisco 12.4(24)mda12 12.4(24)mda12
Ios Cisco 12.4(24)mda13 12.4(24)mda13
Ios Cisco 12.4(24)mdb10 12.4(24)mdb10
Ios Cisco 12.4(24)mdb11 12.4(24)mdb11
Ios Cisco 12.4(24)mdb12 12.4(24)mdb12
Ios Cisco 12.4(24)mdb13 12.4(24)mdb13
Ios Cisco 12.4mda12 12.4mda12

References