PT-2016-4747 · Cisco · Web Security Appliance+1

Publicado

2016-05-25

Atualizado

2016-12-01

CVE-2016-1380

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco AsyncOS version 8.0 before 8.0.6-119 on Web Security Appliance (WSA) devices

Description The issue allows remote attackers to cause a denial of service, specifically a proxy-process hang, via a crafted HTTP POST request.

Recommendations For Cisco AsyncOS version 8.0 before 8.0.6-119, update to version 8.0.6-119 or later to resolve the issue.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2016-1380

Asyncos

Web Security Appliance