Cisco Content Switching Module Layer 7 Load Balancing DoS

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote switch contains a switching module with a denial of service
vulnerability.

Description :

According to its self-reported version number, the Cisco Content
Switching Module in the remote switch may be affected by a denial of
service vulnerability.

The vulnerability exists when the CSM or CSM-S is configured for layer 7
load balancing. An attacker can trigger this vulnerability when the CSM
or CSM-S processes TCP segments with a specific combination of TCP flags
while servers behind the CSM/CSM-S are overloaded and/or fail to accept
a TCP connection.

Note that Nessus has not tested for this issue but has instead relied
only on the application's self-reported version number. Additionally,
the vulnerability only affects Content Switching Modules configured
for layer 7 load balancing.

See also :

http://www.nessus.org/u?8e333797

Solution :

Cisco has released free software updates that address this
vulnerability. Prior to deploying software, customers should consult
their maintenance provider or check the software for feature set
compatibility and known issues specific to their environment.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 6.4
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: CISCO

Nessus Plugin ID: 70137 ()

Bugtraq ID: 29216

CVE ID: CVE-2008-1749