CVE-2013-5474
Cisco IOS 12.2-12.4 and 15.0-15.3 - Denial of Service via IPv6 Virtual Fragmentation Reassembly
Title source: llmDescription
Race condition in the IPv6 virtual fragmentation reassembly (VFR) implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.3 allows remote attackers to cause a denial of service (device reload or hang) via fragmented IPv6 packets, aka Bug ID CSCud64812.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ipv6vfr
Scores
EPSS
0.0144
EPSS Percentile
69.9%
Details
CWE
CWE-362
Status
published
Products (7)
cisco/ios
12.2
cisco/ios
12.3
cisco/ios
12.4
cisco/ios
15.0
cisco/ios
15.1
cisco/ios
15.2
cisco/ios
15.3
Published
Sep 27, 2013
Tracked Since
Feb 18, 2026