Guest

Preview Tool

Cisco Bug: CSCuw38234 - Unrestricted File growth of localhost_access_log.txt fills disk

Last Modified

Aug 18, 2018

Products (1)

  • Cisco Finesse

Known Affected Releases

11.0(1)

Description (partial)

Symptom:
A vulnerability in local file management of certain system log files of Cisco Finesse 
could allow an unauthenticated, remote attacker to  cause high disk utilization resulting 
in a low impact denial of service (DoS) condition. 

The vulnerability is due to a certain system log file not being capped in size and being 
able to consume the majority of the disk space. An attacker could exploit this vulnerability 
by sending crafted connection requests to the device. An exploit could allow the attacker to 
cause a system log file to grow exponentially in size and consume most of the disk space. This 
DoS condition could cause certain Cisco Finesse operations to fail or take longer than expected.

Conditions:
The common disk partition appears 95% full.

This applies to all deployments it is particularly visible in packaged cce deployments because 
packaged monitors disk usage and alerts when a partition is getting full. his alert is 
visible in the System > Deployment gadget.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.