HomePentest-Tools.com Logo

Cisco AsyncOS for Web Security Appliance Denial of Service Vulnerability CVE-2015-4236

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Cisco AsyncOS for Web Security Appliance is prone to a denial of service (DoS) vulnerability.

Risk description

The vulnerability is due to improper handling of packets sent at high rate to an affected system that is configured for clustering. An unauthenticated, remote attacker could exploit this vulnerability by sending packets to the target system at a high rate. An exploit could allow the attacker to cause the affected system to become unresponsive on the clustering and SSH configured ports, resulting in a DoS condition. An attacker can exploit this issue to cause an affected device to become unresponsive, resulting in a denial-of-service condition.

Recommendation

Updates are available. Please see the vendor advisory for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jul 10, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available