Cisco fixes SSL denial of service attack flaw

Cisco Systems says its CSS 11500 Series Content Services Switches are vulnerable to a denial of service attack when supporting SSL (secure sockets layer) services.

Cisco Systems says its CSS 11500 Series Content Services Switches are vulnerable to a denial of service attack when supporting SSL (secure sockets layer) services.

The switches are designed to be used in data centres and direct data traffic according to network and user policies. Integrated SSL modules can be used to simplify the management of digital certificates.

Cisco says, however, that a memory corruption could occur when a switch processes a malformed digital client certificate sent by an attacker. This can cause the switch to reload and cause a denial of service attack on the network.

The flaw only kicks in if a switch is configured to support SSL termination services. The switches are not programmed to support such services by default. Cisco has issued a fix for the vulnerability.

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more on Hackers and cybercrime prevention

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close