[Forgot Password]
Login  Register Subscribe

23631

 
 

126951

 
 

99602

 
 

909

 
 

80130

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2016-6437

Date: (C)2016-10-28   (M)2017-12-06 


A vulnerability in the SSL session cache management of Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to high consumption of disk space. The user would see a performance degradation. More Information: CSCva03095. Known Affected Releases: 5.3(5), 6.1(1), 6.2(1). Known Fixed Releases: 5.3(5g)1, 6.2(2.32).

CVSS Score: 7.1Access Vector: NETWORK
Exploit Score: 8.6Access Complexity: MEDIUM
Impact Score: 6.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: COMPLETE





Reference:
SECTRACK-1037002
BID-93524
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-waas

CPE    13
cpe:/a:cisco:wide_area_application_services:5.3.5c
cpe:/a:cisco:wide_area_application_services:5.3.5a
cpe:/a:cisco:wide_area_application_services:5.3.5b
cpe:/a:cisco:wide_area_application_services:5.3.5
...
CWE    1
CWE-399

© 2013 SecPod Technologies