Published: 24/11/2015 Updated: 24/11/2015

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Cisco Virtual Topology System (VTS) 2.0(0) and 2.0(1) allows remote malicious users to cause a denial of service (CPU and memory consumption, and TCP port outage) via a flood of crafted TCP packets, aka Bug ID CSCux13379.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco virtual topology system 2.0\\(0\\)
cisco virtual topology system 2.0\\(1\\)

A vulnerability in TCP connection handling by Cisco Virtual Topology System (VTS) devices could allow an unauthenticated, remote attacker to disable TCP ports and cause a denial of service (DoS) condition due to high CPU and memory utilization The vulnerability is due to a lack of rate limiting in the TCP listen application An attacker could exp ...

CWE-399 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151123-vts https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151123-vts

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-6377

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect