What is the severity of CVE-2013-5542?

CVE-2013-5542 is rated as a high-severity vulnerability that allows remote attackers to disrupt firewall sessions or reload the device.

How do I fix CVE-2013-5542?

To mitigate CVE-2013-5542, update your Cisco Adaptive Security Appliance Software to a version that is 8.4(7.2), 8.7(1.8), 9.0(3.6), or 9.1(2.8) or later.

What types of attacks does CVE-2013-5542 allow?

CVE-2013-5542 allows remote attackers to execute denial of service attacks through crafted ICMP packets.

Which versions of Cisco Adaptive Security Appliance Software are affected by CVE-2013-5542?

CVE-2013-5542 affects Cisco Adaptive Security Appliance Software versions 8.4 before 8.4(7.2), 8.7 before 8.7(1.8), 9.0 before 9.0(3.6), and 9.1 before 9.1(2.8).

Is there a workaround for CVE-2013-5542?

A recommended workaround for CVE-2013-5542 is to configure the ASA to block ICMP traffic if it's unnecessary for your environment.

Vulnerability/
CVE-2013-5542

high

8.5

CWE

399

21/10/2013

17/9/2024

CVE-2013-5542

First published: Mon Oct 21 2013(Updated: )

Cisco Adaptive Security Appliance (ASA) Software 8.4 before 8.4(7.2), 8.7 before 8.7(1.8), 9.0 before 9.0(3.6), and 9.1 before 9.1(2.8) allows remote attackers to cause a denial of service (firewall-session disruption or device reload) via crafted ICMP packets, aka Bug ID CSCui77398.

Credit: ykramarz@cisco.com ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Adaptive Security Appliance	=9.0
Cisco Adaptive Security Appliance	=9.0\(1\)
Cisco Adaptive Security Appliance	=9.0\(2\)
Cisco Adaptive Security Appliance	=9.0\(3\)
Cisco Adaptive Security Appliance	=8.7
Cisco Adaptive Security Appliance	=8.7\(1.1\)
Cisco Adaptive Security Appliance	=8.7\(1.3\)
Cisco Adaptive Security Appliance	=9.1
Cisco Adaptive Security Appliance Software	=9.1\(1\)
Cisco Adaptive Security Appliance Software	=9.1\(1.7\)
Cisco Adaptive Security Appliance Software	=9.1\(2\)
Cisco Adaptive Security Appliance Software	=8.4
Cisco Adaptive Security Appliance Software	=8.4\(1\)
Cisco Adaptive Security Appliance Software	=8.4\(1.11\)
Cisco Adaptive Security Appliance Software	=8.4\(2\)
Cisco Adaptive Security Appliance Software	=8.4\(2.11\)
Cisco Adaptive Security Appliance Software	=8.4\(3\)
Cisco Adaptive Security Appliance Software	=8.4\(4.11\)
Cisco Adaptive Security Appliance Software	=8.4\(5\)
Cisco Adaptive Security Appliance Software	=8.4\(6\)
Cisco Adaptive Security Appliance Software	=9.0
Cisco Adaptive Security Appliance Software	=9.0\(1\)
Cisco Adaptive Security Appliance Software	=9.0\(2\)
Cisco Adaptive Security Appliance Software	=9.0\(3\)
Cisco Adaptive Security Appliance Software	=8.7
Cisco Adaptive Security Appliance Software	=8.7\(1.1\)
Cisco Adaptive Security Appliance Software	=8.7\(1.3\)
Cisco Adaptive Security Appliance Software	=9.1

Never miss a vulnerability like this again

Reference Links

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131009-asa

Frequently Asked Questions

What is the severity of CVE-2013-5542?
CVE-2013-5542 is rated as a high-severity vulnerability that allows remote attackers to disrupt firewall sessions or reload the device.
How do I fix CVE-2013-5542?
To mitigate CVE-2013-5542, update your Cisco Adaptive Security Appliance Software to a version that is 8.4(7.2), 8.7(1.8), 9.0(3.6), or 9.1(2.8) or later.
What types of attacks does CVE-2013-5542 allow?
CVE-2013-5542 allows remote attackers to execute denial of service attacks through crafted ICMP packets.
Which versions of Cisco Adaptive Security Appliance Software are affected by CVE-2013-5542?
CVE-2013-5542 affects Cisco Adaptive Security Appliance Software versions 8.4 before 8.4(7.2), 8.7 before 8.7(1.8), 9.0 before 9.0(3.6), and 9.1 before 9.1(2.8).
Is there a workaround for CVE-2013-5542?
A recommended workaround for CVE-2013-5542 is to configure the ASA to block ICMP traffic if it's unnecessary for your environment.

agent/author
agent/type
agent/softwarecombine
agent/weakness
agent/references
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-api
agent/software-canonical-lookup-request
collector/nvd-index
vendor/cisco
canonical/cisco adaptive security appliance
version/cisco adaptive security appliance/9.0
version/cisco adaptive security appliance/9.0\(1\)
version/cisco adaptive security appliance/9.0\(2\)
version/cisco adaptive security appliance/9.0\(3\)
version/cisco adaptive security appliance/8.7
version/cisco adaptive security appliance/8.7\(1.1\)
version/cisco adaptive security appliance/8.7\(1.3\)
version/cisco adaptive security appliance/9.1
canonical/cisco adaptive security appliance software
version/cisco adaptive security appliance software/9.1\(1\)
version/cisco adaptive security appliance software/9.1\(1.7\)
version/cisco adaptive security appliance software/9.1\(2\)
version/cisco adaptive security appliance software/8.4
version/cisco adaptive security appliance software/8.4\(1\)
version/cisco adaptive security appliance software/8.4\(1.11\)
version/cisco adaptive security appliance software/8.4\(2\)
version/cisco adaptive security appliance software/8.4\(2.11\)
version/cisco adaptive security appliance software/8.4\(3\)
version/cisco adaptive security appliance software/8.4\(4.11\)
version/cisco adaptive security appliance software/8.4\(5\)
version/cisco adaptive security appliance software/8.4\(6\)
version/cisco adaptive security appliance software/9.0
version/cisco adaptive security appliance software/9.0\(1\)
version/cisco adaptive security appliance software/9.0\(2\)
version/cisco adaptive security appliance software/9.0\(3\)
version/cisco adaptive security appliance software/8.7
version/cisco adaptive security appliance software/8.7\(1.1\)
version/cisco adaptive security appliance software/8.7\(1.3\)
version/cisco adaptive security appliance software/9.1