CVE-2013-1143
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
28/03/2013
Last modified:
11/04/2025
Description
The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957.
Impact
Base Score 2.0
7.10
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.0\(1\)se:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.1.0s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.1.1s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.1.2s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.1.3s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.1.4s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.2.0s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.2.1s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.2.2s:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios_xe:3.3.0s:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-rsvp
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1143
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-rsvp
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1143