CVE-2013-1165

Cisco IOS XE 2.x-3.x < 3.4.5S and 3.5-3.7 < 3.7.1S - Denial of Service via Crafted L2TP Packets

Title source: llm
STIX 2.1

Description

Cisco IOS XE 2.x and 3.x before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR) allows remote attackers to cause a denial of service (card reload) by sending many crafted L2TP packets, aka Bug ID CSCtz23293.

References (1)

Core 1
Core References

Scores

EPSS 0.0189
EPSS Percentile 77.1%

Details

CWE
CWE-20
Status published
Products (38)
cisco/asr_1001
cisco/asr_1002
cisco/asr_1002-x
cisco/asr_1002_fixed_router
cisco/asr_1004
cisco/asr_1006
cisco/asr_1023_router
cisco/ios_xe 2.1.0
cisco/ios_xe 2.1.1
cisco/ios_xe 2.1.2
... and 28 more
Published Apr 11, 2013
Tracked Since Feb 18, 2026