ID
VAR-201305-0164
CVE
CVE-2013-1234
TITLE
Cisco IOS XR of SNMP Service disruption in modules (DoS) Vulnerabilities
Trust: 0.8
sources:
JVNDB: JVNDB-2013-002563
DESCRIPTION
The SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (process restart) via crafted SNMP packets, aka Bug ID CSCue69472. Cisco IOS is a popular Internet operating system. Cisco IOS XR is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue may allow an attacker to cause a denial of service condition. This issue is being tracked by Cisco Bug ID CSCue69472. Cisco IOS XR 4.3 and prior versions are vulnerable
Trust: 2.52
sources:
NVD: CVE-2013-1234 //
JVNDB: JVNDB-2013-002563 //
CNVD: CNVD-2013-04826 //
BID: 59636 //
VULHUB: VHN-61236
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2013-04826
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xr | scope: | - | version: | - | Trust: 1.2 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | cisco | model: | ios xr | scope: | lte | version: | 4.3 | Trust: 0.8 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.1.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.9.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.9 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.8 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.7 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.6 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.5.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.5.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.5.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.50 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.6 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.4 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.0.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 2.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.2.2 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.2.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.1.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.1.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.3 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.1 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.0.0 | Trust: 0.3 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 3.9.2 | Trust: 0.3 |
sources:
CNVD: CNVD-2013-04826 //
BID: 59636 //
JVNDB: JVNDB-2013-002563 //
CNNVD: CNNVD-201305-085 //
NVD: CVE-2013-1234
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2013-04826 //
VULHUB: VHN-61236 //
JVNDB: JVNDB-2013-002563 //
CNNVD: CNNVD-201305-085 //
NVD: CVE-2013-1234
PROBLEMTYPE DATA
| problemtype: | CWE-119 | Trust: 1.9 |
sources:
VULHUB: VHN-61236 //
JVNDB: JVNDB-2013-002563 //
NVD: CVE-2013-1234
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201305-085
TYPE
buffer overflow
Trust: 0.6
sources:
CNNVD: CNNVD-201305-085
CONFIGURATIONS
sources:
JVNDB: JVNDB-2013-002563
PATCH
| title: | Cisco IOS XR Software Crafted SNMP Packets Denial of Service Vulnerability | url: | http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1234 | Trust: 0.8 |
| title: | 29202 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=29202 | Trust: 0.8 |
| title: | Patch for Cisco IOS XR SNMP Module Denial of Service Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/33800 | Trust: 0.6 |
sources:
CNVD: CNVD-2013-04826 //
JVNDB: JVNDB-2013-002563
EXTERNAL IDS
| db: | NVD | id: | CVE-2013-1234 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2013-002563 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201305-085 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2013-04826 | Trust: 0.6 |
| db: | CISCO | id: | 20130430 CISCO IOS XR SOFTWARE CRAFTED SNMP PACKETS DENIAL OF SERVICE VULNERABILITY | Trust: 0.6 |
| db: | SECUNIA | id: | 53311 | Trust: 0.6 |
| db: | BID | id: | 59636 | Trust: 0.4 |
| db: | VULHUB | id: | VHN-61236 | Trust: 0.1 |
sources:
CNVD: CNVD-2013-04826 //
VULHUB: VHN-61236 //
BID: 59636 //
JVNDB: JVNDB-2013-002563 //
CNNVD: CNNVD-201305-085 //
NVD: CVE-2013-1234
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-1234 | Trust: 2.6 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1234 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1234 | Trust: 0.8 |
| url: | http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=cscue69472 | Trust: 0.6 |
| url: | http://secunia.com/advisories/53311 | Trust: 0.6 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
| url: | http://tools.cisco.com/security/center/viewalert.x?alertid=29202 | Trust: 0.3 |
sources:
CNVD: CNVD-2013-04826 //
VULHUB: VHN-61236 //
BID: 59636 //
JVNDB: JVNDB-2013-002563 //
CNNVD: CNNVD-201305-085 //
NVD: CVE-2013-1234
CREDITS
Cisco
Trust: 0.3
sources:
BID: 59636
SOURCES
| db: | CNVD | id: | CNVD-2013-04826 |
| db: | VULHUB | id: | VHN-61236 |
| db: | BID | id: | 59636 |
| db: | JVNDB | id: | JVNDB-2013-002563 |
| db: | CNNVD | id: | CNNVD-201305-085 |
| db: | NVD | id: | CVE-2013-1234 |
LAST UPDATE DATE
2024-11-23T23:02:52.211000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2013-04826 | date: | 2013-05-27T00:00:00 |
| db: | VULHUB | id: | VHN-61236 | date: | 2013-05-03T00:00:00 |
| db: | BID | id: | 59636 | date: | 2013-04-30T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-002563 | date: | 2013-05-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-201305-085 | date: | 2013-05-06T00:00:00 |
| db: | NVD | id: | CVE-2013-1234 | date: | 2024-11-21T01:49:09.977 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2013-04826 | date: | 2013-05-07T00:00:00 |
| db: | VULHUB | id: | VHN-61236 | date: | 2013-05-03T00:00:00 |
| db: | BID | id: | 59636 | date: | 2013-04-30T00:00:00 |
| db: | JVNDB | id: | JVNDB-2013-002563 | date: | 2013-05-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-201305-085 | date: | 2013-05-06T00:00:00 |
| db: | NVD | id: | CVE-2013-1234 | date: | 2013-05-03T11:57:44.960 |