Details of VAR-201505-0176

ID

VAR-201505-0176

CVE

CVE-2015-0730

TITLE

Cisco Wide Area Application Services of SMB Service disruption in modules (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2015-002710

DESCRIPTION

The SMB module in Cisco Wide Area Application Services (WAAS) 6.0(1) allows remote attackers to cause a denial of service (module reload) via an invalid field in a Negotiate Protocol request, aka Bug ID CSCuo75645. An attacker can exploit this issue to cause the SMB module to reload, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCuo75645. This software is mainly used in the link environment with small bandwidth and large delay. SMB is one of the protocol modules used for Wap connection and information communication between client and server

Trust: 1.98

sources: NVD: CVE-2015-0730 // JVNDB: JVNDB-2015-002710 // BID: 74676 // VULHUB: VHN-78676

AFFECTED PRODUCTS

vendor:	cisco	model:	wide area application services	scope:	eq	version:	6.0\(1\)	Trust: 1.6
vendor:	cisco	model:	wide area application services software	scope:	eq	version:	6.0 (1)	Trust: 0.8

sources: JVNDB: JVNDB-2015-002710 // CNNVD: CNNVD-201505-258 // NVD: CVE-2015-0730

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-0730
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-0730
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201505-258
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-78676
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-0730
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-78676
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-78676 // JVNDB: JVNDB-2015-002710 // CNNVD: CNNVD-201505-258 // NVD: CVE-2015-0730

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-78676 // JVNDB: JVNDB-2015-002710 // NVD: CVE-2015-0730

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201505-258

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201505-258

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-002710

PATCH

title:

38865

url:

http://tools.cisco.com/security/center/viewAlert.x?alertId=38865

Trust: 0.8

sources: JVNDB: JVNDB-2015-002710

EXTERNAL IDS

db:	NVD	id:	CVE-2015-0730	Trust: 2.8
db:	SECTRACK	id:	1032339	Trust: 1.1
db:	JVNDB	id:	JVNDB-2015-002710	Trust: 0.8
db:	CNNVD	id:	CNNVD-201505-258	Trust: 0.7
db:	BID	id:	74676	Trust: 0.4
db:	VULHUB	id:	VHN-78676	Trust: 0.1

sources: VULHUB: VHN-78676 // BID: 74676 // JVNDB: JVNDB-2015-002710 // CNNVD: CNNVD-201505-258 // NVD: CVE-2015-0730

REFERENCES

url:	http://tools.cisco.com/security/center/viewalert.x?alertid=38865	Trust: 1.7
url:	http://www.securitytracker.com/id/1032339	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0730	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0730	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: VULHUB: VHN-78676 // BID: 74676 // JVNDB: JVNDB-2015-002710 // CNNVD: CNNVD-201505-258 // NVD: CVE-2015-0730

CREDITS

Cisco

Trust: 0.3

sources: BID: 74676

SOURCES

db:	VULHUB	id:	VHN-78676
db:	BID	id:	74676
db:	JVNDB	id:	JVNDB-2015-002710
db:	CNNVD	id:	CNNVD-201505-258
db:	NVD	id:	CVE-2015-0730

LAST UPDATE DATE

2025-04-12T23:32:50.794000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-78676	date:	2017-01-06T00:00:00
db:	BID	id:	74676	date:	2015-05-14T00:00:00
db:	JVNDB	id:	JVNDB-2015-002710	date:	2015-05-19T00:00:00
db:	CNNVD	id:	CNNVD-201505-258	date:	2015-05-22T00:00:00
db:	NVD	id:	CVE-2015-0730	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-78676	date:	2015-05-16T00:00:00
db:	BID	id:	74676	date:	2015-05-14T00:00:00
db:	JVNDB	id:	JVNDB-2015-002710	date:	2015-05-19T00:00:00
db:	CNNVD	id:	CNNVD-201505-258	date:	2015-05-18T00:00:00
db:	NVD	id:	CVE-2015-0730	date:	2015-05-16T14:59:03.953