cisco-sa-20080514-csm

Cisco Content Switching Module Memory Leak Vulnerability

cisco-sa-20080514-csm · High · Published 18 years ago · Updated 18 years ago

The Cisco Content Switching Module (CSM) and Cisco Content Switching Module with SSL (CSM-S) contain a memory leak vulnerability that can result in a denial of service condition. The vulnerability exists when the CSM or CSM-S is configured for layer 7 load balancing. An attacker can trigger this vulnerability when the CSM or CSM-S processes TCP segments with a specific combination of TCP flags while servers behind the CSM/CSM-S are overloaded and/or fail to accept a TCP connection. Cisco has released software updates that address this vulnerability. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20080514-csm.

Cisco advisory ·CSAF JSON

Workarounds

No workaround information imported yet.

CVEs	CVE-2008-1749
Cisco Bug IDs	NA
CVSS Score	Base 7.8 Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Product Names From Source	Cisco Content Switching Module (CSM), Cisco Content Switching Module with SSL

Related Products

Product	CVE	Evidence
Cisco Content Switching Module (CSM)	CVE-2008-1749	Cisco OpenVuln
Cisco Content Switching Module with SSL	CVE-2008-1749	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco Content Switching Module Memory Leak Vulnerability

Workarounds

Related Products