Vulnslist

find the latest Cisco vulnerabilities

Cisco AsyncOS TCP Flood Denial of Service Vulnerability

cisco-sa-20151104-aos · High · Published · Updated

A vulnerability in the network stack of Cisco AsyncOS for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA) and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to exhaust all available memory, preventing the affected device from accepting new TCP connections. The vulnerability is due to improper handling of TCP packets sent at a high rate. An attacker could exploit this vulnerability by sending crafted TCP packets to the affected system. Note: A full device reload is needed to recover the system to an operational state. Cisco has released software updates that address this vulnerability. There are no workarounds that mitigate this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151104-aos

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that mitigate this vulnerability.

CVEsCVE-2015-6321
Cisco Bug IDsCSCus79774, CSCus79777, CSCzv95795
CVSS ScoreBase 7.1
Base 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source
Cisco Web Security Appliance (WSA), Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), Cisco Secure Email, Cisco Secure Email and Web Manager, Cisco Secure Web Appliance

Related Products

Product CVE Evidence
Cisco Web Security Appliance (WSA) CVE-2015-6321 Cisco OpenVuln
Cisco Secure Web Appliance CVE-2015-6321 Cisco OpenVuln
Cisco Secure Email and Web Manager CVE-2015-6321 Cisco OpenVuln
Cisco Secure Email CVE-2015-6321 Cisco OpenVuln
Cisco Email Security Appliance (ESA) CVE-2015-6321 Cisco OpenVuln
Cisco Content Security Management Appliance (SMA) CVE-2015-6321 Cisco OpenVuln