PT-2008-3290 · Cisco · Cisco Content Switching Module With Ssl+1

Published

2008-05-14

·

Updated

2017-08-08

·

CVE-2008-1749

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Cisco Content Switching Module (CSM) versions 4.2(3) through 4.2(8) Cisco Content Switching Module with SSL (CSM-S) versions 2.1(2) through 2.1(7)
Description A memory leak issue allows remote attackers to cause a denial of service by consuming memory via TCP segments with a specific combination of TCP flags.
Recommendations For Cisco Content Switching Module (CSM) versions 4.2(3) through 4.2(8), update to a version outside of this range to resolve the issue. For Cisco Content Switching Module with SSL (CSM-S) versions 2.1(2) through 2.1(7), update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting TCP traffic to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2008-1749

Affected Products

Cisco Content Switching Module
Cisco Content Switching Module With Ssl