Vulnerability Details CVE-2013-5512
Race condition in the HTTP Deep Packet Inspection (DPI) feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8.2(5.46), 8.3.x before 8.3(2.39), 8.4.x before 8.4(5.5), 8.5.x before 8.5(1.18), 8.6.x before 8.6(1.12), 8.7.x before 8.7(1.4), 9.0.x before 9.0(1.4), and 9.1.x before 9.1(1.2), in certain conditions involving the spoof-server option or ActiveX or Java response inspection, allows remote attackers to cause a denial of service (device reload) via a crafted HTTP response, aka Bug ID CSCud37992.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.9%
CVSS Severity
CVSS v2 Score 7.1
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5512
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5512
Products affected by CVE-2013-5512
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(3.9)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(4.4)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5.35)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2(5.38)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2.34)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3(2.37)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(1.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(2.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(4.11)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4(5)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.5(1.17)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1.10)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6(1.3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.7(1.3)
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.0
-
cpe:2.3:o:cisco:adaptive_security_appliance_software:9.1