Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco Secure Access Control System Distributed Deployment Denial of Service Vulnerability

Cisco-SA-20131023-CVE-2013-5536 · Medium · Published · Updated

A vulnerability in the firewall modules of Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote attacker to cause certain internal processes to crash. The vulnerability is due to improper implementation of the firewall rule to limit incoming packets. An attacker could exploit this vulnerability by flooding the affected service with crafted packets. An exploit could allow the attacker to render some processes nonoperational, resulting in a denial of service (DoS) condition. Cisco has confirmed the vulnerability in a security notice; however, software updates are not available. Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.

Cisco advisory · CSAF JSON

Workarounds

Administrators are advised to allow only trusted users to have network access.

Administrators may consider using IP-based access control lists (ACLs) to allow only trusted systems to access the affected systems.

Administrators are advised to allow only trusted users to have network access.

Administrators are advised to monitor affected systems.

CVEsCVE-2013-5536
Cisco Bug IDsCSCui51521
CVSS ScoreBase 5.0
Base 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P/E:F/RL:U/RC:C
Product Names From Source
Cisco Secure Access Control System (ACS)

Related Products

Product CVE Evidence
Cisco Secure Access Control System (ACS) CVE-2013-5536 Cisco OpenVuln