CVE-2007-3923

Name of the Vulnerable Software and Affected Versions: Cisco Wide Area Application Services (WAAS) versions 4.0.7 through 4.0.9

Description: The issue affects the Common Internet File System (CIFS) optimization in Cisco WAAS when Edge Services are configured. It allows remote attackers to cause a denial of service, resulting in a loss of service. This can be achieved by flooding TCP SYN packets to port 139 or 445.

Recommendations: For versions 4.0.7 and 4.0.9, consider restricting access to ports 139 and 445 to minimize the risk of exploitation. As a temporary workaround, disabling the Edge Services when not necessary may help mitigate the issue until a fix is available.