SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Embedded Server/Appliance)  >   Cisco Web Security Appliance Vendors:   Cisco
Cisco Web Security Appliance Lets Remote Users Consume Excessive Memory Resources
SecurityTracker Alert ID:  1033530
SecurityTracker URL:  http://securitytracker.com/id/1033530
CVE Reference:   CVE-2015-6290   (Links to External Site)
Date:  Sep 10 2015
Impact:   Denial of service via network
Vendor Confirmed:  Yes  
Version(s): 8.0.7; possibly other versions
Description:   A vulnerability was reported in Cisco Web Security Appliance. A remote user can consume excessive memory on the target system.

A remote user that can conduct a man-in-the-middle attack can supply specially crafted HTTP responses to the target device to cause the device to close TCP connections without freeing the associated memory resources.

The vendor has assigned bug ID CSCuw10426 to this vulnerability.

Impact:   A remote user can consume excessive memory resources on the target system.
Solution:   No solution was available at the time of this entry.

The Cisco advisory is available at:

http://tools.cisco.com/security/center/viewAlert.x?alertId=40896

Vendor URL:  tools.cisco.com/security/center/viewAlert.x?alertId=40896 (Links to External Site)
Cause:   Resource error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC