Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20151104-AOS
HistoryNov 04, 2015 - 4:00 p.m.

Cisco AsyncOS TCP Flood Denial of Service Vulnerability

2015-11-0416:00:00
tools.cisco.com
12

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.006

Percentile

77.8%

JSON

A vulnerability in the network stack of Cisco AsyncOS for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA) and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to exhaust all available memory, preventing the affected device from accepting new TCP connections.

The vulnerability is due to improper handling of TCP packets sent at a high rate. An attacker could exploit this vulnerability by sending crafted TCP packets to the affected system.

Note: A full device reload is needed to recover the system to an operational state.

Cisco has released software updates that address this vulnerability. There are no workarounds that mitigate this vulnerability. This advisory is available at the following link:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151104-aos[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151104-aos”]

Affected configurations

Vulners
Node
ciscoweb_security_appliance_\(wsa\)Matchany
OR
ciscoemail_security_applianceMatchany
OR
ciscocontent_security_management_applianceMatchany
OR
ciscoweb_security_appliance_\(wsa\)Matchany
OR
ciscoemail_security_applianceMatchany
OR
ciscocontent_security_management_applianceMatchany
VendorProductVersionCPE
ciscoweb_security_appliance_\(wsa\)anycpe:2.3:a:cisco:web_security_appliance_\(wsa\):any:*:*:*:*:*:*:*
ciscoemail_security_applianceanycpe:2.3:h:cisco:email_security_appliance:any:*:*:*:*:*:*:*
ciscocontent_security_management_applianceanycpe:2.3:h:cisco:content_security_management_appliance:any:*:*:*:*:*:*:*

Related

prion 1
nessus 3
nvd 1
openvas 3
cvelist 1
cve 1
prion
prion
Code injection
2015-11-06 03:59:00
nessus
nessus
Cisco Content Security Management Appliance TCP Flood DoS (CSCus79777)
2015-11-18 00:00:00
Cisco Email Security Appliance Multiple Vulnerabilities
2015-11-18 00:00:00
Cisco Web Security Appliance Multiple Vulnerabilities
2015-11-18 00:00:00
nvd
nvd
CVE-2015-6321
2015-11-06 03:59:03
openvas
openvas
Cisco Content Security Management Appliance AsyncOS TCP Flood Denial of Service Vulnerability
2015-11-06 00:00:00
Cisco Email Security Appliance AsyncOS TCP Flood Denial of Service Vulnerability
2015-11-06 00:00:00
Cisco Web Security Appliance AsyncOS TCP Flood Denial of Service Vulnerability
2015-11-06 00:00:00
cvelist
cvelist
CVE-2015-6321
2015-11-06 02:00:00
cve
cve
CVE-2015-6321
2015-11-06 03:59:03

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.006

Percentile

77.8%

JSON
Related for CISCO-SA-20151104-AOS
prion1nessus3nvd1openvas3cvelist1cve1