Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication

March 27, 2013

Cisco released its semiannual Cisco IOS Software Security Advisory Bundled Publication on March 27, 2013. In direct response to customer feedback, Cisco releases bundles of Cisco IOS Software Security Advisories on the fourth Wednesday of the month in March and September of each calendar year. The publication includes seven Security Advisories that all address vulnerabilities in Cisco IOS Software. Exploits of the individual vulnerabilities could result in a denial of service condition.

Use the Cisco IOS Software Checker to quickly determine if a given Cisco IOS Software release is exposed to Cisco product vulnerabilities.

 

Event Intelligence

The following table identifies Cisco Security Intelligence Operations content and Cisco mitigation information that is associated with this Cisco IOS Software Security Advisory bundled publication:

Cisco Security Advisory
Cisco Applied Mitigation Bulletin
Cisco IntelliShield Alert CVE ID
Search CVEs
CVSS
Base Score
CVSS Q&A
OVAL
OVAL

cisco-sa-20130327-nat

Cisco IOS Software Network Address Translation Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Network Address Translation Denial of Service Vulnerability CVE-2013-1142 7.8 cisco-sa-20130327-nat-CVE-2013-1142

cisco-sa-20130327-rsvp

Cisco IOS Software Resource Reservation Protocol Denial of Service Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Resource Reservation Protocol Denial of Service Vulnerability CVE-2013-1143 7.1 cisco-sa-20130327-rsvp-CVE-2013-1143

cisco-sa-20130327-ike

Cisco IOS Software Internet Key Exchange Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Internet Key Exchange Denial of Service Vulnerability CVE-2013-1144 7.8 cisco-sa-20130327-ike-CVE-2013-1144

cisco-sa-20130327-cce

Cisco IOS Software Zone-Based Policy Firewall Session Initiation Protocol Inspection Denial of Service Vulnerability

Refer to the Workarounds section of the associated Cisco Security Advisory
Cisco IOS Software Zone-Based Policy Firewall Session Initiation Protocol Inspection Denial of Service Vulnerability CVE-2013-1145 7.8 cisco-sa-20130327-cce-CVE-2013-1145

cisco-sa-20130327-smartinstall

Cisco IOS Software Smart Install Denial of Service Vulnerability

Cisco IOS Software Smart Install Denial of Service Vulnerability CVE-2013-1146 7.8 cisco-sa-20130327-smartinstall-CVE-2013-1146

cisco-sa-20130327-pt

Cisco IOS Software Protocol Translation Vulnerability

Cisco IOS Software Protocol Translation Denial of Service Vulnerability CVE-2013-1147 7.8 cisco-sa-20130327-pt-CVE-2013-1147

cisco-sa-20130327-ipsla

Cisco IOS Software IP Service Level Agreement Vulnerability

Cisco IOS Software IP Service Level Agreement Denial of Service Vulnerability CVE-2013-1148 7.8 cisco-sa-20130327-ipsla-CVE-2013-1148

Return to Cisco Security Intelligence Operations