CVE-2017-12267

Name of the Vulnerable Software and Affected Versions Cisco Wide Area Application Services (WAAS) (affected versions not specified) Cisco Virtual Wide Area Application Services (vWAAS) (affected versions not specified)

Description A vulnerability in the Independent Computing Architecture (ICA) accelerator feature could allow an unauthenticated, remote attacker to cause an ICA application optimization-related process to restart, resulting in a partial denial of service (DoS) condition. This is due to improperly aborting a connection when an unexpected protocol packet is received. An attacker could exploit this by sending crafted ICA traffic through the targeted device, potentially causing a DoS condition due to a process unexpectedly restarting, which could lead to the device dropping ICA traffic while the process is restarting.

Recommendations For Cisco Wide Area Application Services (WAAS), consider temporarily disabling the ICA accelerator feature until a patch is available. For Cisco Virtual Wide Area Application Services (vWAAS), consider temporarily disabling the ICA accelerator feature until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.