Cisco Bug: CSCuv99383 - Cisco AsyncOS for Cisco WSA Cluster Denial of Service Vulnerability
Jan 27, 2017
- Cisco Web Security Appliance
Known Affected Releases
Symptom: A vulnerability in the clustering component of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause the device to become unresponsive on the clustering and SSH configured ports. The vulnerability is due to improper handling of packets when sent at high rate when the system is configured for clustering. An attacker could exploit this vulnerability by sending high rate packets against the target system. An exploit could allow the attacker to cause the affected system to become unresponsive on the clustering and Secure Shell (SSH) configured ports. Because of this all new connections to these ports will fail. A reload is required to restore the normal operational behavior. Conditions: Device running with default configuration running an affected version of software. There is a flood of packets to the SSH listening ports.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases