Buffer overflow in Cisco Adaptive_security_appliance

CVE-2013-1138

The NAT process on Cisco Adaptive Security Appliances (ASA) devices allows remote attackers to cause a denial of service (connections-table memory consumption) via crafted packets, aka Bug ID CSCue46386.

Vulnerability class: Buffer Overflow

EPSS: 0.005 (68.2th percentile) — read the EPSS interpretation.

Affected products

Cisco Adaptive_security_appliance
Cisco Adaptive_security_appliance_software — versions 7.0, 7.0\(0\), 7.0\(1\)
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

20130225 Cisco ASA Connections Table Exhaustion Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)