Cisco Adaptive Security Appliance (ASA) Software 8.4.x before 8.4(3) and 8.6.x before 8.6(1.3) does not properly manage memory upon an AnyConnect SSL VPN client disconnection, which allows remote attackers to cause a denial of service (memory consumption, and forwarding outage or system hang) via packets to the disconnected machine's IP address, aka Bug ID CSCtt36737.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:53
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa - Vendor Advisory | |
References | () http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3415 - Vendor Advisory |
15 Aug 2023, 14:41
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:cisco:adaptive_security_appliance_software:8.6:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.4\(1.11\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.6\(1\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.4\(2\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.4:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.4\(2.11\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:8.4\(1\):*:*:*:*:*:*:* |
cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4\(1\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4\(2\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6\(1.10\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4\(2.11\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4\(1.11\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:8.6\(1\):*:*:*:*:*:*:* |
Information
Published : 2013-10-13 10:20
Updated : 2024-11-21 01:53
NVD link : CVE-2013-3415
Mitre link : CVE-2013-3415
CVE.ORG link : CVE-2013-3415
JSON object : View
Products Affected
cisco
- adaptive_security_appliance_software
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer