Miembros de
Boletines de Vulnerabilidades |
Cisco Web Security Appliance DNS Resolution Vulnerability |
|
Información sobre el sistema |
|
| Software afectado | Cisco |
Descripción |
|
|
A vulnerability in the DNS resolution function of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition due to DNS name resolution failing through the device. The vulnerability is due to the handling of DNS requests awaiting a DNS response when new, incoming DNS requests are received. An attacker could exploit this vulnerability by sending TCP proxy traffic to the WSA at a high rate. An exploit could allow the More info: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150909-CVE-2015-6287?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Web%20Security%20Appliance%20DNS%20Resolution%20Vulnerabilit |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-10-08 |