QwikSec

Security Database

CVE

CWE

Training

CVE-2013-6682

Published: Nov 13, 2013

Modified: Sep 17, 2024

PUBLISHED

Description

The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which allows remote attackers to cause a denial of service (connection-database corruption) via an invalid entry, aka Bug ID CSCui33299.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=31692

x_refsource_CONFIRM

20131108 Cisco Adaptive Security Appliance Phone Proxy Database Entry Manipulation Vulnerability

vendor-advisory

x_refsource_CISCO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.