Cisco Bug: CSCuw38234 - Unrestricted File growth of localhost_access_log.txt fills disk
Nov 17, 2018
- Cisco Finesse
Known Affected Releases
Symptom: A vulnerability in local file management of certain system log files of Cisco Finesse could allow an unauthenticated, remote attacker to cause high disk utilization resulting in a low impact denial of service (DoS) condition. The vulnerability is due to a certain system log file not being capped in size and being able to consume the majority of the disk space. An attacker could exploit this vulnerability by sending crafted connection requests to the device. An exploit could allow the attacker to cause a system log file to grow exponentially in size and consume most of the disk space. This DoS condition could cause certain Cisco Finesse operations to fail or take longer than expected. Conditions: The common disk partition appears 95% full. This applies to all deployments it is particularly visible in packaged cce deployments because packaged monitors disk usage and alerts when a partition is getting full. his alert is visible in the System > Deployment gadget.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases