Denial of Service Vulnerability on Cisco Web Security Appliance Products
CVE-2015-6287

Currently unrated

Key Information:

Vendor: Cisco
Status: Web Security Virtual Appliance
Vendor: CVE Published:; 14 September 2015

Summary

The Cisco Web Security Appliance, specifically versions 8.0.6-078 and 8.0.6-115, is vulnerable to a denial of service attack. Remote attackers can exploit this vulnerability by flooding the appliance with TCP traffic, which results in delays during DNS resolution processes. This could lead to service outages, severely impacting the security and operational effectiveness of networks relying on the appliance for secure web traffic management.

References

http://www.securitytracker.com/id/1033529

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/76677

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Sep 14, 2015
Vulnerability Reserved
Aug 17, 2015