CVE-2013-6682 Information

Description

The phone-proxy implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0.3.6 and earlier does not properly validate X.509 certificates which allows remote attackers to cause a denial of service (connection-database corruption) via an invalid entry aka Bug ID CSCui33299.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6682 http://tools.cisco.com/security/center/viewAlert.x?alertId=31692