Cisco Firepower Threat Defense Software TCP Flood Denial of Service Vulnerability

A vulnerability in the packet processing functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to inefficient memory management. An attacker could exploit this vulnerability by sending a large number of TCP packets to a specific port on an affected device. A successful exploit could allow the attacker to exhaust system memory, which could cause the device to reload unexpectedly. No manual intervention is needed to recover the device after it has reloaded.

N/A

未加控制的资源消耗(资源穷尽)

Cisco Firepower Threat Defense (FTD) 资源管理错误漏洞

Cisco Firepower Threat Defense（FTD）是美国思科（Cisco）公司的一套提供下一代防火墙服务的统一软件。 Cisco Firepower Threat Defense (FTD) 存在安全漏洞，这个漏洞是由于低效的内存管理造成的。攻击者可利用该漏洞可以通过向受影响设备上的特定端口发送大量TCP包来利用这个漏洞。成功的利用可能会让攻击者可利用该漏洞耗尽系统内存，从而导致设备意外地重新加载。

N/A

资源管理错误