Details of VAR-201511-0004

ID

VAR-201511-0004

CVE

CVE-2015-6321

TITLE

plural Cisco Security Runs on the appliance AsyncOS Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2015-005770

DESCRIPTION

Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023, and 9.5.x and 9.6.x before 9.6.0-042 on Email Security Appliance (ESA) devices; before 9.1.0-032, 9.1.1 before 9.1.1-005, and 9.5.x before 9.5.0-025 on Content Security Management Appliance (SMA) devices; and before 7.7.0-725 and 8.x before 8.0.8-113 on Web Security Appliance (WSA) devices allows remote attackers to cause a denial of service (memory consumption) via a flood of TCP packets, aka Bug IDs CSCus79774, CSCus79777, and CSCzv95795. Vendors have confirmed this vulnerability Bug ID CSCus79774 , CSCus79777 ,and CSCzv95795 It is released as.A large amount by a third party TCP Service disruption via packets ( Memory consumption ) There is a possibility of being put into a state. The Cisco AsyncOS operating system enhances the security and performance of Cisco Email Security appliances. A security vulnerability exists in the Cisco AsyncOS f network stack. An attacker can exploit this issue to cause a denial-of-service condition. This issue is tracked by Cisco Bug IDs CSCus79774, CSCus79777, and CSCzv95795. The following releases are affected: Cisco AsyncOS on Cisco ESA appliances prior to 8.5.7-042, 9.x prior to 9.1.0-032, 9.1.x prior to 9.1.1-023, and 9.5 prior to 9.6.0-042. x and 9.6.x releases; Cisco AsyncOS releases prior to 9.1.0-032 on Content SMA appliances, 9.1.1 releases prior to 9.1.1-005, and 9.5.x releases prior to 9.5.0-025; Cisco AsyncOS releases on WSA appliances AsyncOS versions prior to 7.7.0-725 and versions 8.x prior to 8.0.8-113

Trust: 2.52

sources: NVD: CVE-2015-6321 // JVNDB: JVNDB-2015-005770 // CNVD: CNVD-2015-07404 // BID: 77434 // VULHUB: VHN-84282

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2015-07404

AFFECTED PRODUCTS

vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.1.2-000	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.3.6-014	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.3.0-350	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.0.0-073	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.1.0-004	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.2.0-238	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.1.0-001	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.4.0-150	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	7.9.2-116	Trust: 1.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.3.5-061	Trust: 1.6
vendor:	cisco	model:	email security appliance	scope:	eq	version:	7.7.1-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.1.0-011	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	6.0.0-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.5.6-052	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.9.1-000	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	8.0.0-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.4.4-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	7.7.0-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	7.6.1-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.9.2-032	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.7.1-000	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	7.8.0-328	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.5.0-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.6.0-011	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.0.1-031	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.3.7-010	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.5.1-000	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	7.9.0-201	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.5.2-000	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	8.5.0.000	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.7.0-000	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.5.0-000	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	7.6.3-000	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.5.0-825	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.1.1-033	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	7.8.0-311	Trust: 1.0
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	7.8.1-001	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.0.5-000	Trust: 1.0
vendor:	cisco	model:	web security appliance	scope:	eq	version:	5.6.0-623	Trust: 1.0
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.0.0-212	Trust: 1.0
vendor:	cisco	model:	asyncos	scope:	lt	version:	9.5.x (sma)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	8.x (wsa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	9.1.1-005	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	9.6.0-042	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	8.5.7-042	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	9.1.1 (sma)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	9.6.x (esa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	(wsa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	7.7.0-725	Trust: 0.8
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	(sma)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	9.1.0-032	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	(sma)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	9.x (esa)	Trust: 0.8
vendor:	cisco	model:	e email security the appliance	scope:	eq	version:	(esa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	9.5.x (esa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	9.1.x (esa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	lt	version:	(esa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	9.1.1-023	Trust: 0.8
vendor:	cisco	model:	web security the appliance	scope:	eq	version:	(wsa)	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	9.5.0-025	Trust: 0.8
vendor:	cisco	model:	asyncos	scope:	eq	version:	8.0.8-113	Trust: 0.8
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.5.x	Trust: 0.6
vendor:	cisco	model:	email security appliance	scope:	lt	version:	8.5.7-042	Trust: 0.6
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.x(<9.1.0-032)	Trust: 0.6
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.1.x(<9.1.1-023)	Trust: 0.6
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.6.x(<9.6.0-042)	Trust: 0.6
vendor:	cisco	model:	content security management appliance	scope:	lt	version:	9.1.0-032	Trust: 0.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.1.1(<9.1.1-005)	Trust: 0.6
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.5.x(<9.5.0-025)	Trust: 0.6
vendor:	cisco	model:	web security appliance	scope:	lt	version:	7.7.0-725	Trust: 0.6
vendor:	cisco	model:	web security appliance	scope:	eq	version:	8.x(<8.0.8-113)	Trust: 0.6
vendor:	cisco	model:	web security appliance	scope:	eq	version:	8.0	Trust: 0.3
vendor:	cisco	model:	web security appliance	scope:	eq	version:	7.7	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.0	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.0.2	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.0.1	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.6	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.5	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.1	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	9.0	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	eq	version:	8.5	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.1.1	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.1	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.5	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.1	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	9.0	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.4	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	eq	version:	8.3	Trust: 0.3
vendor:	cisco	model:	asyncos	scope:	eq	version:	-	Trust: 0.3
vendor:	cisco	model:	web security appliance	scope:	ne	version:	8.0.8-113	Trust: 0.3
vendor:	cisco	model:	web security appliance	scope:	ne	version:	7.7.0-725	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	ne	version:	9.6.0-042	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	ne	version:	9.1.0-032	Trust: 0.3
vendor:	cisco	model:	email security appliance	scope:	ne	version:	8.5.7-042	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	ne	version:	9.5.0-025	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	ne	version:	9.1.1-005	Trust: 0.3
vendor:	cisco	model:	content security management appliance	scope:	ne	version:	9.1.0-032	Trust: 0.3

sources: CNVD: CNVD-2015-07404 // BID: 77434 // JVNDB: JVNDB-2015-005770 // CNNVD: CNNVD-201511-102 // NVD: CVE-2015-6321

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-6321
value:	HIGH
Trust: 1.0
NVD:	CVE-2015-6321
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2015-07404
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201511-102
value:	HIGH
Trust: 0.6
VULHUB:	VHN-84282
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2015-6321
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2015-07404
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-84282
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2015-07404 // VULHUB: VHN-84282 // JVNDB: JVNDB-2015-005770 // CNNVD: CNNVD-201511-102 // NVD: CVE-2015-6321

PROBLEMTYPE DATA

problemtype:

CWE-399

Trust: 1.9

sources: VULHUB: VHN-84282 // JVNDB: JVNDB-2015-005770 // NVD: CVE-2015-6321

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201511-102

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201511-102

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-005770

PATCH

title:	cisco-sa-20151104-aos	url:	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151104-aos	Trust: 0.8
title:	Patch for Cisco AsyncOS Denial of Service Vulnerability (CNVD-2015-07404)	url:	https://www.cnvd.org.cn/patchInfo/show/66476	Trust: 0.6
title:	Cisco AsyncOS Remediation of resource management error vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=58598	Trust: 0.6

sources: CNVD: CNVD-2015-07404 // JVNDB: JVNDB-2015-005770 // CNNVD: CNNVD-201511-102

EXTERNAL IDS

db:	NVD	id:	CVE-2015-6321	Trust: 3.4
db:	SECTRACK	id:	1034060	Trust: 1.1
db:	SECTRACK	id:	1034061	Trust: 1.1
db:	JVNDB	id:	JVNDB-2015-005770	Trust: 0.8
db:	CNNVD	id:	CNNVD-201511-102	Trust: 0.7
db:	CNVD	id:	CNVD-2015-07404	Trust: 0.6
db:	BID	id:	77434	Trust: 0.4
db:	VULHUB	id:	VHN-84282	Trust: 0.1

sources: CNVD: CNVD-2015-07404 // VULHUB: VHN-84282 // BID: 77434 // JVNDB: JVNDB-2015-005770 // CNNVD: CNNVD-201511-102 // NVD: CVE-2015-6321

REFERENCES

url:	http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20151104-aos	Trust: 2.6
url:	http://www.securitytracker.com/id/1034060	Trust: 1.1
url:	http://www.securitytracker.com/id/1034061	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6321	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6321	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: CNVD: CNVD-2015-07404 // VULHUB: VHN-84282 // BID: 77434 // JVNDB: JVNDB-2015-005770 // CNNVD: CNNVD-201511-102 // NVD: CVE-2015-6321

CREDITS

Cisco

Trust: 0.3

sources: BID: 77434

SOURCES

db:	CNVD	id:	CNVD-2015-07404
db:	VULHUB	id:	VHN-84282
db:	BID	id:	77434
db:	JVNDB	id:	JVNDB-2015-005770
db:	CNNVD	id:	CNNVD-201511-102
db:	NVD	id:	CVE-2015-6321

LAST UPDATE DATE

2024-11-23T22:56:23.754000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2015-07404	date:	2015-11-10T00:00:00
db:	VULHUB	id:	VHN-84282	date:	2016-12-07T00:00:00
db:	BID	id:	77434	date:	2015-11-04T00:00:00
db:	JVNDB	id:	JVNDB-2015-005770	date:	2015-11-09T00:00:00
db:	CNNVD	id:	CNNVD-201511-102	date:	2015-11-09T00:00:00
db:	NVD	id:	CVE-2015-6321	date:	2024-11-21T02:34:46.890

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2015-07404	date:	2015-11-10T00:00:00
db:	VULHUB	id:	VHN-84282	date:	2015-11-06T00:00:00
db:	BID	id:	77434	date:	2015-11-04T00:00:00
db:	JVNDB	id:	JVNDB-2015-005770	date:	2015-11-09T00:00:00
db:	CNNVD	id:	CNNVD-201511-102	date:	2015-11-09T00:00:00
db:	NVD	id:	CVE-2015-6321	date:	2015-11-06T03:59:03.433