CVE-2015-6300

Name of the Vulnerable Software and Affected Versions Cisco Secure Access Control Server (ACS) Solution Engine version 5.7(0.15)

Description The issue allows remote authenticated users to cause a denial of service, resulting in an SSH screen process crash. This can be achieved via crafted commands, either through the Command Line Interface (CLI) or the Graphical User Interface (GUI).

Recommendations For Cisco Secure Access Control Server (ACS) Solution Engine version 5.7(0.15), consider restricting access to the SSH screen process until a fix is available. As a temporary workaround, limit the use of CLI and GUI commands to essential operations only. At the moment, there is no information about a newer version that contains a fix for this vulnerability.