CVE-2013-6682: The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which…

medium6.4CVSS 3.1

AVNACLAuNCNIPAP

The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates, which allows remote attackers to cause a denial of service (connection-database corruption) via an invalid entry, aka Bug ID CSCui33299.

Affected

111 ranges· showing 25

Vendor	Product	Version range	Fixed in
cisco	adaptive_security_appliance_software	<= 9.0.3\(6\)	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—
cisco	adaptive_security_appliance_software	—	—