CVE-2013-5537

The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS sessions, which allows remote attackers to cause a denial of service (management GUI outage) via multiple TCP connections, aka Bug IDs CSCuj59411, CSCuf89818, and CSCuh05635.

Severity	HIGH
CVSS	7.8
CWE	CWE-20
KEV
Published	12 years ago
Modified	2 weeks ago

Related Products

Product	Advisory
Cisco Web Security Appliance (WSA)	Cisco-SA-20131023-CVE-2013-5537
Cisco Secure Web Appliance	Cisco-SA-20131023-CVE-2013-5537
Cisco Secure Email and Web Manager	Cisco-SA-20131023-CVE-2013-5537
Cisco Secure Email	Cisco-SA-20131023-CVE-2013-5537
Cisco Email Security Appliance (ESA)	Cisco-SA-20131023-CVE-2013-5537
Cisco Content Security Management Appliance (SMA)	Cisco-SA-20131023-CVE-2013-5537