ID
VAR-201304-0171
CVE
CVE-2013-1216
TITLE
Cisco IOS XR of SNMP Service disruption in modules (DoS) Vulnerabilities
Trust: 0.8
sources:
JVNDB: JVNDB-2013-002503
DESCRIPTION
Memory leak in the SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (memory consumption and process restart) via crafted SNMP packets, aka Bug ID CSCue31546. Cisco IOS is a popular Internet operating system. Cisco IOS XR is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue may allow an attacker to cause a denial of service condition. This issue is being tracked by Cisco Bug ID CSCue31546. Versions prior to Cisco IOS XR 4.3 are vulnerable
Trust: 2.52
sources:
NVD: CVE-2013-1216 //
JVNDB: JVNDB-2013-002503 //
CNVD: CNVD-2013-04604 //
BID: 59550 //
VULHUB: VHN-61218
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2013-04604
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xr | scope: | - | version: | - | Trust: 1.4 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.x | Trust: 0.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.2.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.1.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.9 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 2.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.9.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.5.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.5.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.1.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.50 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.1.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.0.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.2.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.1.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.5.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.6 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.9.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.4 | Trust: 0.3 |
sources:
CNVD: CNVD-2013-04604 //
BID: 59550 //
JVNDB: JVNDB-2013-002503 //
CNNVD: CNNVD-201304-605 //
NVD: CVE-2013-1216
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2013-04604 //
VULHUB: VHN-61218 //
JVNDB: JVNDB-2013-002503 //
CNNVD: CNNVD-201304-605 //
NVD: CVE-2013-1216
PROBLEMTYPE DATA
| problemtype: | CWE-200 | Trust: 1.9 |
sources:
VULHUB: VHN-61218 //
JVNDB: JVNDB-2013-002503 //
NVD: CVE-2013-1216
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201304-605
TYPE
information disclosure
Trust: 0.6
sources:
CNNVD: CNNVD-201304-605
CONFIGURATIONS
sources:
JVNDB: JVNDB-2013-002503
PATCH
| title: | Cisco IOS XR Software SNMP Memory Leak Vulnerability | url: | http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1216 | Trust: 0.8 |
| title: | 29103 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=29103 | Trust: 0.8 |
| title: | Patch for Cisco IOS XR SNMP Module Memory Leak Denial of Service Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/33750 | Trust: 0.6 |
sources:
CNVD: CNVD-2013-04604 //
JVNDB: JVNDB-2013-002503
EXTERNAL IDS
| db: | NVD | id: | CVE-2013-1216 | Trust: 3.4 |
| db: | BID | id: | 59550 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2013-002503 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201304-605 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2013-04604 | Trust: 0.6 |
| db: | SECUNIA | id: | 53278 | Trust: 0.6 |
| db: | CISCO | id: | 20130425 CISCO IOS XR SOFTWARE SNMP MEMORY LEAK VULNERABILITY | Trust: 0.6 |
| db: | VULHUB | id: | VHN-61218 | Trust: 0.1 |
sources:
CNVD: CNVD-2013-04604 //
VULHUB: VHN-61218 //
BID: 59550 //
JVNDB: JVNDB-2013-002503 //
CNNVD: CNNVD-201304-605 //
NVD: CVE-2013-1216
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-1216 | Trust: 2.0 |
| url: | http://tools.cisco.com/security/center/viewalert.x?alertid=29103 | Trust: 0.9 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1216 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1216 | Trust: 0.8 |
| url: | http://secunia.com/advisories/53278 | Trust: 0.6 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
sources:
CNVD: CNVD-2013-04604 //
VULHUB: VHN-61218 //
BID: 59550 //
JVNDB: JVNDB-2013-002503 //
CNNVD: CNNVD-201304-605 //
NVD: CVE-2013-1216
CREDITS
Cisco
Trust: 0.3
sources:
BID: 59550
SOURCES
| db: | CNVD | id: | CNVD-2013-04604 |
| db: | VULHUB | id: | VHN-61218 |
| db: | BID | id: | 59550 |
| db: | JVNDB | id: | JVNDB-2013-002503 |
| db: | CNNVD | id: | CNNVD-201304-605 |
| db: | NVD | id: | CVE-2013-1216 |
LAST UPDATE DATE
2024-11-23T23:02:52.387000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2013-04604 | date: | 2013-05-03T00:00:00 |
| db: | VULHUB | id: | VHN-61218 | date: | 2013-05-01T00:00:00 |
| db: | BID | id: | 59550 | date: | 2013-04-25T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-002503 | date: | 2013-05-10T00:00:00 |
| db: | CNNVD | id: | CNNVD-201304-605 | date: | 2013-05-02T00:00:00 |
| db: | NVD | id: | CVE-2013-1216 | date: | 2024-11-21T01:49:07.830 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2013-04604 | date: | 2013-05-03T00:00:00 |
| db: | VULHUB | id: | VHN-61218 | date: | 2013-04-29T00:00:00 |
| db: | BID | id: | 59550 | date: | 2013-04-25T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-002503 | date: | 2013-04-30T00:00:00 |
| db: | CNNVD | id: | CNNVD-201304-605 | date: | 2013-04-29T00:00:00 |
| db: | NVD | id: | CVE-2013-1216 | date: | 2013-04-29T12:20:36.227 |