2 matches found
CVE-2016-1383
Cisco AsyncOS on Web Security Appliance (WSA) up to version 8.8 is affected by CVE-2016-1383 due to a memory handling flaw when processing a certain HTTP response code, causing a denial of service via memory exhaustion. A remote, unauthenticated attacker can exploit this with specially crafted HT...
CVE-2016-1382
Cisco AsyncOS on Web Security Appliance (WSA) is affected by CVE-2016-1382 due to improper memory allocation for HTTP requests, enabling unauthenticated remote DoS via crafted HTTP traffic that can trigger a proxy-process reload. Affected versions are Cisco AsyncOS prior to 8.5.3-069 and 8.6 thro...