What is the severity of CVE-2016-1440?

CVE-2016-1440 has a high severity due to the potential for denial of service caused by high CPU consumption.

How do I fix CVE-2016-1440?

To fix CVE-2016-1440, upgrade your Cisco Web Security Appliance to a version that is not affected by the vulnerability.

What types of attacks exploit CVE-2016-1440?

CVE-2016-1440 can be exploited by remote attackers who establish an FTP session and improperly terminate the control connection.

Which Cisco Web Security Appliance versions are vulnerable to CVE-2016-1440?

Versions of Cisco Web Security Appliance up to and including 9.1.0-070 are vulnerable to CVE-2016-1440.

What impact can CVE-2016-1440 have on a network?

CVE-2016-1440 can potentially cause significant strain on CPU resources, leading to degraded performance or unavailability of the Cisco Web Security Appliance.

Vulnerability/
CVE-2016-1440

medium

5.3

CWE

399

2/7/2016

5/8/2024

CVE-2016-1440

First published: Sat Jul 02 2016(Updated: )

The proxy process on Cisco Web Security Appliance (WSA) devices through 9.1.0-070 allows remote attackers to cause a denial of service (CPU consumption) by establishing an FTP session and then improperly terminating the control connection after a file transfer, aka Bug ID CSCuy43468.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Web Security Appliance	=5.6.0-623
Cisco Web Security Appliance	=6.0.0-000
Cisco Web Security Appliance	=7.1.0
Cisco Web Security Appliance	=7.1.1
Cisco Web Security Appliance	=7.1.2
Cisco Web Security Appliance	=7.1.3
Cisco Web Security Appliance	=7.1.4
Cisco Web Security Appliance	=7.5.0-000
Cisco Web Security Appliance	=7.5.0-825
Cisco Web Security Appliance	=7.5.1-000
Cisco Web Security Appliance	=7.5.2-000
Cisco Web Security Appliance	=7.5.2-hp2-303
Cisco Web Security Appliance	=7.7.0-000
Cisco Web Security Appliance	=7.7.0-608
Cisco Web Security Appliance	=7.7.1-000
Cisco Web Security Appliance	=7.7.5-835
Cisco Web Security Appliance	=8.0.0-000
Cisco Web Security Appliance	=8.0.5
Cisco Web Security Appliance	=8.0.5_hp1
Cisco Web Security Appliance	=8.0.6
Cisco Web Security Appliance	=8.0.6-078
Cisco Web Security Appliance	=8.0.6-119
Cisco Web Security Appliance	=8.0.7
Cisco Web Security Appliance	=8.0.7-142
Cisco Web Security Appliance	=8.0.8-mr-113
Cisco Web Security Appliance	=8.5.0-497
Cisco Web Security Appliance	=8.5.0.000
Cisco Web Security Appliance	=8.5.1-021
Cisco Web Security Appliance	=8.5.2-024
Cisco Web Security Appliance	=8.5.2-027
Cisco Web Security Appliance	=8.5.3-055
Cisco Web Security Appliance	=8.8.0-000
Cisco Web Security Appliance	=8.8.0-085
Cisco Web Security Appliance	=9.0.0-193
Cisco Web Security Appliance	=9.0_base
Cisco Web Security Appliance	=9.1.0-000
Cisco Web Security Appliance	=9.1.0-070

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-1440?
CVE-2016-1440 has a high severity due to the potential for denial of service caused by high CPU consumption.
How do I fix CVE-2016-1440?
To fix CVE-2016-1440, upgrade your Cisco Web Security Appliance to a version that is not affected by the vulnerability.
What types of attacks exploit CVE-2016-1440?
CVE-2016-1440 can be exploited by remote attackers who establish an FTP session and improperly terminate the control connection.
Which Cisco Web Security Appliance versions are vulnerable to CVE-2016-1440?
Versions of Cisco Web Security Appliance up to and including 9.1.0-070 are vulnerable to CVE-2016-1440.
What impact can CVE-2016-1440 have on a network?
CVE-2016-1440 can potentially cause significant strain on CPU resources, leading to degraded performance or unavailability of the Cisco Web Security Appliance.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/cisco
canonical/cisco web security appliance
version/cisco web security appliance/5.6.0-623
version/cisco web security appliance/6.0.0-000
version/cisco web security appliance/7.1.0
version/cisco web security appliance/7.1.1
version/cisco web security appliance/7.1.2
version/cisco web security appliance/7.1.3
version/cisco web security appliance/7.1.4
version/cisco web security appliance/7.5.0-000
version/cisco web security appliance/7.5.0-825
version/cisco web security appliance/7.5.1-000
version/cisco web security appliance/7.5.2-000
version/cisco web security appliance/7.5.2-hp2-303
version/cisco web security appliance/7.7.0-000
version/cisco web security appliance/7.7.0-608
version/cisco web security appliance/7.7.1-000
version/cisco web security appliance/7.7.5-835
version/cisco web security appliance/8.0.0-000
version/cisco web security appliance/8.0.5
version/cisco web security appliance/8.0.5_hp1
version/cisco web security appliance/8.0.6
version/cisco web security appliance/8.0.6-078
version/cisco web security appliance/8.0.6-119
version/cisco web security appliance/8.0.7
version/cisco web security appliance/8.0.7-142
version/cisco web security appliance/8.0.8-mr-113
version/cisco web security appliance/8.5.0-497
version/cisco web security appliance/8.5.0.000
version/cisco web security appliance/8.5.1-021
version/cisco web security appliance/8.5.2-024
version/cisco web security appliance/8.5.2-027
version/cisco web security appliance/8.5.3-055
version/cisco web security appliance/8.8.0-000
version/cisco web security appliance/8.8.0-085
version/cisco web security appliance/9.0.0-193
version/cisco web security appliance/9.0_base
version/cisco web security appliance/9.1.0-000
version/cisco web security appliance/9.1.0-070