The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.31), 8.1 and 8.2 before 8.2(5.38), 8.3 before 8.3(2.37), 8.4 before 8.4(5.3), 8.5 and 8.6 before 8.6(1.10), 8.7 before 8.7(1.4), 9.0 before 9.0(1.1), and 9.1 before 9.1(1.2) allows remote attackers to cause a denial of service (device reload) via a crafted URL, aka Bug ID CSCud16590.
References
| Link | Resource |
|---|---|
| http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130410-asa | Vendor Advisory |
| http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1150 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
History
No history.
Information
Published : 2013-04-11 10:55
Updated : 2023-08-15 15:14
NVD link : CVE-2013-1150
Mitre link : CVE-2013-1150
CVE.ORG link : CVE-2013-1150
JSON object : View
Products Affected
cisco
- adaptive_security_appliance
- adaptive_security_appliance_software
CWE
CWE-287
Improper Authentication