8.0Base

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

cisco

CWE-399

NVD

Published: 2015-09-14

Updated: 2016-12-29

Summary

Cisco Web Security Appliance (WSA) 8.0.6-078 and 8.0.6-115 allows remote attackers to cause a denial of service (service outage) via a flood of TCP traffic that leads to DNS resolution delays, aka Bug IDs CSCur32005 and CSCur07907.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco WEB Security Virtual Appliance 8.0.5 Cisco WEB Security Virtual Appliance 8.0.6 Cisco WEB Security Virtual Appliance 8.0_Base	3

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://tools.cisco.com/security/center/viewAlert.x?alertId=40846
http://www.securityfocus.com/bid/76677
http://www.securitytracker.com/id/1033529