Reported August 8, 2003, by S21SEC.

 

 

VERSIONS AFFECTED

 

  • Cisco CSS 11000 series

 

 

DESCRIPTION

 

Cisco CSS 11000 series content service switches are vulnerable to a Denial of Service (DoS) condition. By delivering a heavy load of TCP SYN packets directed to the CSS's circuit address, a malicious user can cause high CPU load or even sudden reboots, resulting in a DoS condition.

 

VENDOR RESPONSE

 

Cisco recommends upgrading the software to release WebNS 5.00.110s, which you can download from the company's Web site.

 

CREDIT                                                                                                       

Discovered by S21SEC.