Miembros de
Boletines de Vulnerabilidades |
Cisco Virtual Topology System TCP Connection Functionality Denial of Service Vulnerability |
|
Información sobre el sistema |
|
| Software afectado | Cisco |
Descripción |
|
|
A vulnerability in TCP connection handling by Cisco Virtual Topology System (VTS) devices could allow an unauthenticated, remote attacker to disable TCP ports and cause a denial of service (DoS) condition due to high CPU and memory utilization.The vulnerability is due to a lack of rate limiting in the TCP listen application. An attacker could exploit this vulnerability by sending a crafted TCP traffic stream in which specific types of TCP packets are flooded to an affected device. An example More info: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151123-vts?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Virtual%20Topology%20System%20TCP%20Connection%20Functionality%20Denia |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2015-6377. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-11-24 |