HomePentest-Tools.com Logo

Cisco WSA HTTPS Packet Processing Denial of Service Vulnerability CVE-2016-1288

Severity
CVSSv3 Score
5.3
Vulnerability description

Cisco WSA Software is prone to a denial of service (DoS) vulnerability.

Risk description

The flaw is due to incorrect processing of HTTPS packets Successful exploitation allows an unauthenticated, remote attacker with the ability to negotiate a secure connection from within the trusted network to cause a denial of service (DoS) condition on the affected device.

Recommendation

Upgrade to Cisco Web Security Appliance (WSA) software versions 8.5.3-051 or 9.0.0-485 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Mar 3, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available