Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2013-5512

EPSS 0.11% · P29
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-5512

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Race condition in the HTTP Deep Packet Inspection (DPI) feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x before 8.2(5.46), 8.3.x before 8.3(2.39), 8.4.x before 8.4(5.5), 8.5.x before 8.5(1.18), 8.6.x before 8.6(1.12), 8.7.x before 8.7(1.4), 9.0.x before 9.0(1.4), and 9.1.x before 9.1(1.2), in certain conditions involving the spoof-server option or ActiveX or Java response inspection, allows remote attackers to cause a denial of service (device reload) via a crafted HTTP response, aka Bug ID CSCud37992.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco ASA软件HTTP Deep Packet Inspection功能拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Adaptive Security Appliances(ASA,自适应安全设备)Software是美国思科(Cisco)公司的一套运行于防火墙中的操作系统。 Cisco ASA软件中的HTTP Deep Packet Inspection (DPI)功能中存在拒绝服务漏洞。该漏洞源于当HTTP DPI引擎检测HTTP报文时,没有正确处理竞争条件。成功利用此漏洞要求启用了spoof-server参数选项或配置了Cisco ASA软件来检测和屏蔽包含active-x或java-applet的HT
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2013-5512

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2013-5512

登录查看更多情报信息。

Same Patch Batch · n/a · 2013-10-13 · 25 CVEs total

CVE-2013-4824HP IMC和IMC Service Operation Management Software Module 安全漏洞
CVE-2013-5515Cisco ASA软件Clientless SSL VPN功能拒绝服务漏洞
CVE-2013-5513Cisco ASA软件DNS Application Layer Protocol Inspection引擎拒绝服务漏洞
CVE-2013-5511Cisco ASA软件Adaptive Security Device Management远程管理功能安全绕过漏洞
CVE-2013-5510Cisco ASA软件remote-access VPN 安全绕过漏洞
CVE-2013-5509Cisco ASA软件SSL实现安全绕过漏洞
CVE-2013-5508Cisco ASA和FWSM SQL*Net检查引擎拒绝服务漏洞
CVE-2013-5507Cisco Adaptive Security Appliances Software 加密问题漏洞
CVE-2013-5506Cisco FWSM 身份验证功能安全漏
CVE-2013-4827HP IMC和IMC Service Operation Management Software Module SQL注入漏洞
CVE-2013-4826HP IMC和IMC Service Operation Management Software Module 安全漏洞
CVE-2013-4825HP IMC和IMC Service Operation Management Software Module 安全绕过漏洞
CVE-2012-4105Cisco Unified Computing System fabric-interconnect组件拒绝服务漏洞
CVE-2013-4823HP IMC和IMC BIMS 安全漏洞
CVE-2013-4822HP IMC和IMC BIMS 任意代码执行漏洞
CVE-2013-4804HP Business Process Monitor 远程任意代码执行漏洞和信息泄露漏洞
CVE-2013-4056IBM InfoSphere Information Server 跨站请求伪造漏洞
CVE-2013-3415Cisco ASA软件拒绝服务漏洞
CVE-2013-2787Alstom e-terracontrol软件拒绝服务漏洞
CVE-2013-2366HP Business Process Monitor 远程任意代码执行漏洞和信息泄露漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2013-5512

No comments yet

Leave a comment