Denial of Service in Cisco CSS 11000 Series Content Switches

Reported August 8, 2003, by S21SEC.

 

 

VERSIONS AFFECTED

 

  • Cisco CSS 11000 series

 

 

DESCRIPTION

 

Cisco CSS 11000 series content service switches are vulnerable to a Denial of Service (DoS) condition. By delivering a heavy load of TCP SYN packets directed to the CSS's circuit address, a malicious user can cause high CPU load or even sudden reboots, resulting in a DoS condition.

 

VENDOR RESPONSE

 

Cisco recommends upgrading the software to release WebNS 5.00.110s, which you can download from the company's Web site.

 

CREDIT                                                                                                       

Discovered by S21SEC.

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish