Memory Leak in Cisco Content Switching Module Affects Remote Access Security
CVE-2008-1749

Currently unrated

Key Information:

Vendor: Cisco
Status: Cisco Content Switching Module; Cisco Content Switching Module Ssl
Vendor: CVE Published:; 14 May 2008

Summary

The Cisco Content Switching Module (CSM) version 4.2(3) through 4.2(8) and CSM with SSL version 2.1(2) through 2.1(7) contain a memory leak vulnerability. Remote attackers can exploit this flaw by sending specially crafted TCP segments with specific combinations of TCP flags, leading to excessive memory consumption. This can result in a denial of service, disrupting network operations and impacting service availability.

References

http://www.securityfocus.com/bid/29216

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1020021

vdb-entryx_refsource_SECTRACK

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
May 14, 2008
Vulnerability Reserved
Apr 11, 2008