CVE-2013-3410

Published Jul 18, 2013

Last updated 11 years ago

Overview

Description: Cisco Intrusion Prevention System (IPS) Software on IPS NME devices before 7.0(9)E4 allows remote attackers to cause a denial of service (device reload) via malformed IPv4 packets that trigger incorrect memory allocation, aka Bug ID CSCua61977.
Source: ykramarz@cisco.com
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCD4BC15-7211-4DE7-A1CD-A95515A66FD6",
            "versionEndIncluding": "7.0\\(8\\)e4"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03105E7F-12F8-4497-8A27-BD2F1653FD38"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(1\\)e3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32F57CD3-EA32-4814-A021-3CEB23900E18"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(2\\)e3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDCEF522-431E-49D3-84F8-24EBE0D03E0B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(2\\)e4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5961030A-ADD4-4BA6-A691-275DE6D9E1B2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(3\\)e4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21F422BC-E40B-4EC6-B0A5-7CD3A3C92B4A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(4\\)e4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04BA1FCB-DF1B-42E5-BBF3-808119AF80ED"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(5a\\)e4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6074CC8-4A49-4A31-809F-B87E4B80D179"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(6\\)e4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20548D0B-8B3C-468F-8966-13019C4D69C6"
          },
          {
            "criteria": "cpe:2.3:a:cisco:intrusion_prevention_system:7.0\\(7\\)e4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3206DA6-FE23-4214-A1F8-3C212C2768BB"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:ips_nme:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C5FD488-E20E-4622-8536-EACAF3B5D37E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References