Denial of service in Cisco Wide Area Application Services - CVE-2017-6628
Published: May 3, 2017 / Updated: May 4, 2017
Vulnerability identifier: #VU6399
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2017-6628
CWE-ID: CWE-399
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Cisco Systems, Inc
Affected software:
Cisco Wide Area Application Services
Cisco Wide Area Application Services
Detailed vulnerability description
The vulnerability alows a remote attacker to cause DoS condition on the target system.
The weakness exists due to a Secure Sockets Layer/Transport Layer Security (SSL/TLS) alert being incorrectly handled in a specific SSL/TLS connection state. A remote attacker can establish a SMART-SSL connection through the targeted device, send a specially crafted stream of SSL/TLS traffic and cause the WAN optimization to stop functioning while the process restarts.
Successful exploitation of the vulnerability may result in denial of service.
The weakness exists due to a Secure Sockets Layer/Transport Layer Security (SSL/TLS) alert being incorrectly handled in a specific SSL/TLS connection state. A remote attacker can establish a SMART-SSL connection through the targeted device, send a specially crafted stream of SSL/TLS traffic and cause the WAN optimization to stop functioning while the process restarts.
Successful exploitation of the vulnerability may result in denial of service.
How to mitigate CVE-2017-6628
Update to version 6.2.3b.