CVE-2013-5513: Buffer Overflow
First published: Sun Oct 13 2013(Updated: )
Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8.2(5.46), 8.3.x before 8.3(2.39), 8.4.x before 8.4(7), 8.5.x before 8.5(1.18), 8.6.x before 8.6(1.12), 8.7.x before 8.7(1.7), 9.0.x before 9.0(3.3), and 9.1.x before 9.1(1.8), when the DNS ALPI engine is enabled for TCP, allows remote attackers to cause a denial of service (device reload) via crafted TCP DNS packets, aka Bug ID CSCug03975.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Adaptive Security Appliance | =8.2 | |
| Cisco Adaptive Security Appliance | =8.2\(1\) | |
| Cisco Adaptive Security Appliance | =8.2\(2\) | |
| Cisco Adaptive Security Appliance | =8.2\(3\) | |
| Cisco Adaptive Security Appliance | =8.2\(3.9\) | |
| Cisco Adaptive Security Appliance | =8.2\(4\) | |
| Cisco Adaptive Security Appliance | =8.2\(4.1\) | |
| Cisco Adaptive Security Appliance | =8.2\(4.4\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(5\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(5.35\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(5.38\) | |
| Cisco Adaptive Security Appliance Software | =8.3\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.3\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.4 | |
| Cisco Adaptive Security Appliance Software | =8.4\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(1.11\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(2.11\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(3\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(4.11\) | |
| Cisco Adaptive Security Appliance Software | =8.4\(5\) | |
| Cisco Adaptive Security Appliance Software | =8.5 | |
| Cisco Adaptive Security Appliance Software | =8.5\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.5\(1.17\) | |
| Cisco Adaptive Security Appliance Software | =8.6 | |
| Cisco Adaptive Security Appliance Software | =8.6\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.6\(1.10\) | |
| Cisco Adaptive Security Appliance Software | =8.7\(1.3\) | |
| Cisco Adaptive Security Appliance Software | =9.0 | |
| Cisco Adaptive Security Appliance Software | =9.1 | |
| Cisco Adaptive Security Appliance Software | =9.1\(1.7\) | |
| Cisco Adaptive Security Appliance Software | =8.2 | |
| Cisco Adaptive Security Appliance Software | =8.2\(1\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(2\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(3\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(3.9\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4.1\) | |
| Cisco Adaptive Security Appliance Software | =8.2\(4.4\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-5513?
CVE-2013-5513 is rated as a high-severity vulnerability due to its ability to allow remote attacks.
How do I fix CVE-2013-5513?
To fix CVE-2013-5513, upgrade your Cisco Adaptive Security Appliance Software to the recommended versions listed in the advisory.
What software versions are affected by CVE-2013-5513?
CVE-2013-5513 affects several versions of Cisco Adaptive Security Appliance Software, including versions prior to 8.2(5.46) and 9.1(1.8).
What kind of attacks can CVE-2013-5513 allow?
CVE-2013-5513 can allow remote attackers to execute arbitrary code via crafted DNS requests.
When was CVE-2013-5513 disclosed?
CVE-2013-5513 was disclosed on October 9, 2013.
- agent/references
- agent/author
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cisco
- canonical/cisco adaptive security appliance
- version/cisco adaptive security appliance/8.2
- version/cisco adaptive security appliance/8.2\(1\)
- version/cisco adaptive security appliance/8.2\(2\)
- version/cisco adaptive security appliance/8.2\(3\)
- version/cisco adaptive security appliance/8.2\(3.9\)
- version/cisco adaptive security appliance/8.2\(4\)
- version/cisco adaptive security appliance/8.2\(4.1\)
- version/cisco adaptive security appliance/8.2\(4.4\)
- canonical/cisco adaptive security appliance software
- version/cisco adaptive security appliance software/8.2\(5\)
- version/cisco adaptive security appliance software/8.2\(5.35\)
- version/cisco adaptive security appliance software/8.2\(5.38\)
- version/cisco adaptive security appliance software/8.3\(1\)
- version/cisco adaptive security appliance software/8.3\(2\)
- version/cisco adaptive security appliance software/8.4
- version/cisco adaptive security appliance software/8.4\(1\)
- version/cisco adaptive security appliance software/8.4\(1.11\)
- version/cisco adaptive security appliance software/8.4\(2\)
- version/cisco adaptive security appliance software/8.4\(2.11\)
- version/cisco adaptive security appliance software/8.4\(3\)
- version/cisco adaptive security appliance software/8.4\(4.11\)
- version/cisco adaptive security appliance software/8.4\(5\)
- version/cisco adaptive security appliance software/8.5
- version/cisco adaptive security appliance software/8.5\(1\)
- version/cisco adaptive security appliance software/8.5\(1.17\)
- version/cisco adaptive security appliance software/8.6
- version/cisco adaptive security appliance software/8.6\(1\)
- version/cisco adaptive security appliance software/8.6\(1.10\)
- version/cisco adaptive security appliance software/8.7\(1.3\)
- version/cisco adaptive security appliance software/9.0
- version/cisco adaptive security appliance software/9.1
- version/cisco adaptive security appliance software/9.1\(1.7\)
- version/cisco adaptive security appliance software/8.2
- version/cisco adaptive security appliance software/8.2\(1\)
- version/cisco adaptive security appliance software/8.2\(2\)
- version/cisco adaptive security appliance software/8.2\(3\)
- version/cisco adaptive security appliance software/8.2\(3.9\)
- version/cisco adaptive security appliance software/8.2\(4\)
- version/cisco adaptive security appliance software/8.2\(4.1\)
- version/cisco adaptive security appliance software/8.2\(4.4\)