Guest

Preview Tool

Cisco Bug: CSCuv99383 - Cisco AsyncOS for Cisco WSA Cluster Denial of Service Vulnerability

Last Modified

Jan 27, 2017

Products (1)

  • Cisco Web Security Appliance

Known Affected Releases

8.5.2-027

Description (partial)

Symptom:
A vulnerability in the clustering component of Cisco AsyncOS for Cisco
Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to
cause the device to become unresponsive on the clustering and SSH configured ports.

The vulnerability is due to improper handling of packets when sent at
high rate when the system is configured for clustering. An attacker could exploit
this vulnerability by sending high rate packets against the target system. An
exploit could allow the attacker to cause the affected system to become
unresponsive on the clustering and Secure Shell (SSH) configured ports. Because 
of this all new connections to these ports will fail. A reload is required to restore the normal
operational behavior.

Conditions:
Device running with default configuration running an affected version of software. There is a flood of packets to
the SSH listening ports.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.