Cisco Systems has fixed four denial-of-service vulnerabilities that attackers could exploit to cause Web Security Appliance devices to stop processing traffic correctly.
One of the four DoS vulnerabilities fixed Wednesday by Cisco stems from how the OS handles a specific HTTP response code.
If this happens, the device will no longer accept new incoming connection requests, Cisco said in an advisory.
Another DoS vulnerability is caused by a lack of proper input validation of the packets that make up HTTP POST requests.
The flaw can be exploited through specifically crafted HTTP requests and can lead to the proxy process becoming unresponsive and the WSA reloading.
In addition to the WSA flaws, Cisco also patched a moderate severity cross-site scripting vulnerability in the Web interface of the Cisco Unified Computing System UCS Central Software.