CVE-2014-3285

CVSS V2 Medium 5 CVSS V3 None
Description
Cisco Wide Area Application Services (WAAS) 5.3(.5a) and earlier, when SharePoint acceleration is enabled, does not properly parse SharePoint responses, which allows remote attackers to cause a denial of service (application-optimization handler reload) via a crafted SharePoint application, aka Bug ID CSCue47674.
Overview
  • CVE ID
  • CVE-2014-3285
  • Assigner
  • ykramarz@cisco.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2014-05-29T17:55:05
  • Last Modified Date
  • 2016-09-07T19:02:49
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:cisco:wide_area_application_services:*:*:*:*:*:*:*:* 1 OR 5.3\(.5a\)
cpe:2.3:a:cisco:wide_area_application_services:5.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1a\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1b\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1c\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1d\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1e\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.1\(.1f\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.2\(.1\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.3:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.3\(.1\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.3\(.3\):*:*:*:*:*:*:* 1 OR
cpe:2.3:a:cisco:wide_area_application_services:5.3\(.5\):*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:N/I:N/A:P
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • NONE
  • Integrity Impact
  • NONE
  • Availability Impact
  • PARTIAL
  • Base Score
  • 5
  • Severity
  • MEDIUM
  • Exploitability Score
  • 10
  • Impact Score
  • 2.9
History
Created Old Value New Value Data Type Notes
2022-05-10 10:13:58 Added to TrackCVE
2022-12-01 23:17:54 psirt@cisco.com ykramarz@cisco.com CVE Assigner updated
2022-12-01 23:17:54 2014-05-29T17:55Z 2014-05-29T17:55:05 CVE Published Date updated
2022-12-01 23:17:54 2016-09-07T19:02:49 CVE Modified Date updated
2022-12-01 23:17:54 Analyzed Vulnerability Status updated