|
Cisco Wide Area Application Services Edge Services SYN Flood Denial of Service
|
|
Secunia Advisory:
|
SA26122
|
|
|
Release Date:
|
2007-07-19
|
|
Last Update:
|
2007-07-27
|
|
Popularity:
|
4,236 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Cisco Wide Area Application Services (WAAS)
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2007-3923
|
|
Description:
A vulnerability has been reported in Cisco Wide Area Application Services (WAAS), which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error in Edge Services, which uses CIFS optimisation, when handling packets sent to ports 139/TCP and 445/TCP. This can be exploited to cause a device running WAAS to stop processing all traffic by sending a TCP SYN flood to port 139/TCP or 445/TCP.
Successful exploitation requires that WAAS is configured for Edge Services.
The vulnerability is reported in WAE appliances and the NM-WAE-502 network modules running WAAS versions 4.0.7 or 4.0.9.
Solution:
Update to version 4.0.11.
http://www.cisco.com/pcgi-bin/tablebuild.pl/waas40?psrtdcat20e2
Provided and/or discovered by:
Reported by the vendor.
Changelog:
2007-07-27: Added CVE reference.
Original Advisory:
Cisco:
http://www.cisco.com/warp/public/707/cisco-sa-20070718-waas.shtml
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
