CVE-2013-1100
First published: Wed Feb 13 2013(Updated: )
The HTTP server in Cisco IOS on Catalyst switches does not properly handle TCP socket events, which allows remote attackers to cause a denial of service (device crash) via crafted packets on TCP port (1) 80 or (2) 443, aka Bug ID CSCuc53853.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | ||
| Cisco Catalyst 2820 | ||
| Cisco Catalyst 2820 | =9.0_0.07 | |
| Cisco Catalyst 2900 | ||
| Cisco Catalyst 2900 | =lre_xl | |
| Cisco Catalyst 2900 | =xl | |
| Cisco Catalyst 2900 | ||
| Cisco Catalyst 2900 XL | ||
| Cisco 2901 | ||
| Cisco Catalyst 2902 | ||
| Cisco Catalyst 2920 | ||
| Cisco Catalyst 2926 | ||
| Cisco Catalyst 2926f | ||
| Cisco Catalyst 2926gl | ||
| Cisco Catalyst 2926gs | ||
| Cisco Catalyst 2926t | ||
| Cisco Catalyst 2940 | ||
| Cisco Catalyst 2948G | ||
| Cisco Catalyst 2948G | ||
| Cisco Catalyst 2948G | ||
| Cisco Catalyst 2948 GE TX | ||
| Cisco Catalyst 2950 LRE | ||
| Cisco Catalyst 2950 LRE | ||
| Cisco Catalyst 2955 | ||
| Cisco Catalyst 2970 | ||
| Cisco Catalyst 2980G-A | ||
| Cisco Catalyst 2980G | ||
| Cisco Catalyst 3000 | ||
| Cisco Catalyst 3200 | ||
| Cisco Catalyst 3500 | ||
| Cisco Catalyst 3500 | ||
| Cisco Catalyst 3500 | ||
| Cisco Catalyst 3550 | ||
| Cisco Catalyst 3560 | ||
| Cisco Catalyst 3560 | ||
| Cisco Catalyst 3560 | ||
| Cisco Catalyst 3750 | ||
| Cisco Catalyst 3750e-48pd-s | ||
| Cisco Catalyst 3750X-24P-L | ||
| Cisco Catalyst 3750 Metro | ||
| Cisco Catalyst 3750G | ||
| Cisco Catalyst 3900 | ||
| Cisco Catalyst 4000 | ||
| Cisco Catalyst 4200 | ||
| Cisco Catalyst 4224 | ||
| Cisco Catalyst 4232 | ||
| Cisco Catalyst 4232 | ||
| Cisco Catalyst 4500 | ||
| Cisco Catalyst 4503-e | ||
| Cisco Catalyst 4506-E | ||
| Cisco Catalyst 4507R/E | ||
| Cisco Catalyst 4510R+E | ||
| Cisco Catalyst 4840G | ||
| Cisco Catalyst 4908G-L3 | ||
| Cisco Catalyst 4912G | ||
| Cisco Catalyst 4948e Ethernet Switch | ||
| Cisco Catalyst 5000 | ||
| Cisco Catalyst 5500 | ||
| Cisco Catalyst 5505 | ||
| Cisco Catalyst 5509 | ||
| Cisco Catalyst 6000 | ||
| Cisco Catalyst 6000 | =2.2\(1a\) | |
| Cisco Catalyst 6000 | =3.1\(1a\) | |
| Cisco Catalyst 6000 ws-svc-nam-2 | =2.2\(1a\) | |
| Cisco Catalyst 6000 ws-svc-nam-2 | =3.1\(1a\) | |
| Cisco Catalyst 6500 ws-x6380-nam | =2.1\(2\) | |
| Cisco Catalyst 6500 ws-x6380-nam | =3.1\(1a\) | |
| Cisco Catalyst 6500-E | ||
| Cisco Catalyst 6500 Wireless Services Module | =2.2\(1a\) | |
| Cisco Catalyst 6500 Wireless Services Module | =3.1\(1a\) | |
| Cisco Catalyst 6000 ws-svc-nam-2 | =2.2\(1a\) | |
| Cisco Catalyst 6000 ws-svc-nam-2 | =3.1\(1a\) | |
| Cisco Catalyst 6500 Series Switches | =2.1\(2\) | |
| Cisco Catalyst 6500 Series Switches | =3.1\(1a\) | |
| cisco catalyst 6503-e firmware | ||
| Cisco Catalyst 6504-E Firmware | ||
| Cisco Catalyst 6506-E Firmware | ||
| Cisco Catalyst 6509-E Firmware | ||
| Cisco Catalyst 6509-NEB-A Firmware | ||
| Cisco Catalyst 6509-V-E | ||
| Cisco Catalyst 6513 | ||
| Cisco Catalyst 6513 | ||
| Cisco Catalyst 6608 | ||
| Cisco Catalyst 6624 | ||
| Cisco Catalyst 7600 Series | ||
| Cisco Catalyst 7600 | =2.2\(1a\) | |
| Cisco Catalyst 7600 | =3.1\(1a\) | |
| Cisco Catalyst 7600 | =2.2\(1a\) | |
| Cisco Catalyst 7600 | =3.1\(1a\) | |
| Cisco Catalyst 7600 Series | =2.1\(2\) | |
| Cisco Catalyst 7600 Series | =3.1\(1a\) | |
| Cisco Catalyst 8500L Series Router | ||
| Cisco Catalyst 8510 CSR | ||
| Cisco Catalyst 8510MSR | ||
| Cisco Catalyst 8540CSR | ||
| Cisco Catalyst 8540MSR | ||
| Cisco Catalyst WS-C2924-XL |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2013-1100?
CVE-2013-1100 has been rated as a medium severity issue due to its potential to cause a denial of service.
How does CVE-2013-1100 affect Cisco devices?
CVE-2013-1100 allows remote attackers to crash affected Cisco IOS devices by sending crafted packets to TCP ports 80 or 443.
How do I fix CVE-2013-1100?
To address CVE-2013-1100, apply the appropriate security patches or updates provided by Cisco for affected IOS versions.
Which Cisco devices are impacted by CVE-2013-1100?
CVE-2013-1100 affects Cisco IOS running on various Catalyst switches.
Can CVE-2013-1100 be exploited remotely?
Yes, CVE-2013-1100 can be exploited remotely by sending specially crafted packets.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios
- canonical/cisco catalyst 2820
- version/cisco catalyst 2820/9.0_0.07
- canonical/cisco catalyst 2900
- version/cisco catalyst 2900/lre_xl
- version/cisco catalyst 2900/xl
- canonical/cisco catalyst 2900 xl
- canonical/cisco 2901
- canonical/cisco catalyst 2902
- canonical/cisco catalyst 2920
- canonical/cisco catalyst 2926
- canonical/cisco catalyst 2926f
- canonical/cisco catalyst 2926gl
- canonical/cisco catalyst 2926gs
- canonical/cisco catalyst 2926t
- canonical/cisco catalyst 2940
- canonical/cisco catalyst 2948g
- canonical/cisco catalyst 2948 ge tx
- canonical/cisco catalyst 2950 lre
- canonical/cisco catalyst 2955
- canonical/cisco catalyst 2970
- canonical/cisco catalyst 2980g-a
- canonical/cisco catalyst 2980g
- canonical/cisco catalyst 3000
- canonical/cisco catalyst 3200
- canonical/cisco catalyst 3500
- canonical/cisco catalyst 3550
- canonical/cisco catalyst 3560
- canonical/cisco catalyst 3750
- canonical/cisco catalyst 3750e-48pd-s
- canonical/cisco catalyst 3750x-24p-l
- canonical/cisco catalyst 3750 metro
- canonical/cisco catalyst 3750g
- canonical/cisco catalyst 3900
- canonical/cisco catalyst 4000
- canonical/cisco catalyst 4200
- canonical/cisco catalyst 4224
- canonical/cisco catalyst 4232
- canonical/cisco catalyst 4500
- canonical/cisco catalyst 4503-e
- canonical/cisco catalyst 4506-e
- canonical/cisco catalyst 4507r/e
- canonical/cisco catalyst 4510r+e
- canonical/cisco catalyst 4840g
- canonical/cisco catalyst 4908g-l3
- canonical/cisco catalyst 4912g
- canonical/cisco catalyst 4948e ethernet switch
- canonical/cisco catalyst 5000
- canonical/cisco catalyst 5500
- canonical/cisco catalyst 5505
- canonical/cisco catalyst 5509
- canonical/cisco catalyst 6000
- version/cisco catalyst 6000/2.2\(1a\)
- version/cisco catalyst 6000/3.1\(1a\)
- canonical/cisco catalyst 6000 ws-svc-nam-2
- version/cisco catalyst 6000 ws-svc-nam-2/2.2\(1a\)
- version/cisco catalyst 6000 ws-svc-nam-2/3.1\(1a\)
- canonical/cisco catalyst 6500 ws-x6380-nam
- version/cisco catalyst 6500 ws-x6380-nam/2.1\(2\)
- version/cisco catalyst 6500 ws-x6380-nam/3.1\(1a\)
- canonical/cisco catalyst 6500-e
- canonical/cisco catalyst 6500 wireless services module
- version/cisco catalyst 6500 wireless services module/2.2\(1a\)
- version/cisco catalyst 6500 wireless services module/3.1\(1a\)
- canonical/cisco catalyst 6500 series switches
- version/cisco catalyst 6500 series switches/2.1\(2\)
- version/cisco catalyst 6500 series switches/3.1\(1a\)
- canonical/cisco catalyst 6503-e firmware
- canonical/cisco catalyst 6504-e firmware
- canonical/cisco catalyst 6506-e firmware
- canonical/cisco catalyst 6509-e firmware
- canonical/cisco catalyst 6509-neb-a firmware
- canonical/cisco catalyst 6509-v-e
- canonical/cisco catalyst 6513
- canonical/cisco catalyst 6608
- canonical/cisco catalyst 6624
- canonical/cisco catalyst 7600 series
- canonical/cisco catalyst 7600
- version/cisco catalyst 7600/2.2\(1a\)
- version/cisco catalyst 7600/3.1\(1a\)
- version/cisco catalyst 7600 series/2.1\(2\)
- version/cisco catalyst 7600 series/3.1\(1a\)
- canonical/cisco catalyst 8500l series router
- canonical/cisco catalyst 8510 csr
- canonical/cisco catalyst 8510msr
- canonical/cisco catalyst 8540csr
- canonical/cisco catalyst 8540msr
- canonical/cisco catalyst ws-c2924-xl