Detections
Analytics

Cisco Content Switching Module Layer 7 Load Balancing DoS

high Nessus Plugin ID 70137

Language:

Synopsis

The remote switch contains a switching module with a denial of service vulnerability.

Description

According to its self-reported version number, the Cisco Content Switching Module in the remote switch may be affected by a denial of service vulnerability.

The vulnerability exists when the CSM or CSM-S is configured for layer 7 load balancing. An attacker can trigger this vulnerability when the CSM or CSM-S processes TCP segments with a specific combination of TCP flags while servers behind the CSM/CSM-S are overloaded and/or fail to accept a TCP connection.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Additionally, the vulnerability only affects Content Switching Modules configured for layer 7 load balancing.

Solution

Cisco has released free software updates that address this vulnerability. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment.

See Also

http://www.nessus.org/u?6ac6f3de

Plugin Details

Severity: High

ID: 70137

File Name: cisco-sa-20080514-csm.nasl

Version: 1.8

Type: local

Family: CISCO

Published: 9/26/2013

Updated: 11/15/2018

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 5.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/a:cisco:cisco_content_switching_module

Required KB Items: Settings/ParanoidReport, Host/Cisco/CSMSW/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 5/14/2008

Vulnerability Publication Date: 5/14/2008

Reference Information

CVE: CVE-2008-1749

BID: 29216

CWE: 399