Published: 28/03/2013 Updated: 28/07/2020

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Race condition in the VRF-aware NAT feature in Cisco IOS 12.2 up to and including 12.4 and 15.0 up to and including 15.2 allows remote malicious users to cause a denial of service (memory consumption) via IPv4 packets, aka Bug IDs CSCtg47129 and CSCtz96745.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios

Cisco IOS Software contains a vulnerability that could allow an unauthenticated, remote attacker to cause a reload of a vulnerable device The vulnerability is due to improper translation of valid Session Initiation Protocol (SIP) packets across a Network Address Translation (NAT) boundary An attacker could exploit this vulnerability by repeated ...

The Cisco IOS Software implementation of the virtual routing and forwarding (VRF) aware network address translation (NAT) feature contains a vulnerability when translating IP packets that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition Cisco has released software update ...

CWE-362 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-nat http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1142 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130327-CVE-2013-1142

CVE-2013-1142

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect