Vulnerability Details CVE-2013-5512
Race condition in the HTTP Deep Packet Inspection (DPI) feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8.2(5.46), 8.3.x before 8.3(2.39), 8.4.x before 8.4(5.5), 8.5.x before 8.5(1.18), 8.6.x before 8.6(1.12), 8.7.x before 8.7(1.4), 9.0.x before 9.0(1.4), and 9.1.x before 9.1(1.2), in certain conditions involving the spoof-server option or ActiveX or Java response inspection, allows remote attackers to cause a denial of service (device reload) via a crafted HTTP response, aka Bug ID CSCud37992.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 68.8%
CVSS Severity
CVSS v2 Score 7.1
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5512
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5512
Products affected by CVE-2013-5512
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3.9)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5.35)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5.38)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2.34)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2.37)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(4.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5(1.17)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1.10)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1.3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.7(1.3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1