This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote switch contains a switching module with a denial of service
According to its self-reported version number, the Cisco Content
Switching Module in the remote switch may be affected by a denial of
The vulnerability exists when the CSM or CSM-S is configured for layer 7
load balancing. An attacker can trigger this vulnerability when the CSM
or CSM-S processes TCP segments with a specific combination of TCP flags
while servers behind the CSM/CSM-S are overloaded and/or fail to accept
a TCP connection.
Note that Nessus has not tested for this issue but has instead relied
only on the application's self-reported version number. Additionally,
the vulnerability only affects Content Switching Modules configured
for layer 7 load balancing.
See also :
Cisco has released free software updates that address this
vulnerability. Prior to deploying software, customers should consult
their maintenance provider or check the software for feature set
compatibility and known issues specific to their environment.
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.4
Public Exploit Available : true