Denial of service in Cisco Wide Area Application Services - CVE-2016-6437
Published: October 12, 2016 / Updated: April 5, 2018
Vulnerability identifier: #VU936
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-6437
CWE-ID: CWE-399
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Cisco Systems, Inc
Affected software:
Cisco Wide Area Application Services
Cisco Wide Area Application Services
Detailed vulnerability description
The vulnerability allows a remote unauthenticated user to cause DoS conditions on the target system.
The weakness exists due to a lack of file size limitations for SSL system files stored on the disk. By sending a continuous stream of SSL traffic, attackers can cause the target service to deny.
Successful exploitation of the vulnerability will result in denial of service on the vulnerable system.
The weakness exists due to a lack of file size limitations for SSL system files stored on the disk. By sending a continuous stream of SSL traffic, attackers can cause the target service to deny.
Successful exploitation of the vulnerability will result in denial of service on the vulnerable system.
How to mitigate CVE-2016-6437
Update to version 5.3(5g)1 or 6.2(2.32).