http://www.cisco.com/en/US/customer/products/sw/voicesw/ps556/products_tech_note09186a0080937324.shtml Hot Issues from Cisco TAC. Please click the link for complete details. en-us wsisk@cisco.com (Wes Sisk) news-at-cisco-rss@cisco.com (Cisco Newsroom) Mon, 20 May 2013 10:19:20 EDT Mon, 20 May 2013 10:19:20 EDT PERL http://www.cisco.com/en/US/customer/products/sw/voicesw/ps556/products_tech_note09186a0080937324.shtml 10080 http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCug78957 <b>Symptoms:</b> A vulnerability in SSL logging daemon on Cisco ACE could allow an unauthenticated, remote attacker to cause partial DOS condition on the affected device. The vulnerability is due to Cisco ACE not rotating logs from SSL sessions, causing a hard drive to run out of free space. An attacker could exploit this vulnerability by sending a large amount of SSL connections to the affected device. An exploit could allow the attacker to exhaust free space on the hard drive, causing operations such as configuration and writing configurations on the disk to fail with the following error: ''write error: No space left on device'' Additional errors can be seen on the Cisco ACE console. <br> <b>Conditions:</b> Running A2(3.6) or later and heavily using the HTTPS management interface. <br> <b>Workaround:</b> Contact TAC that can apply a workaround on your module. <b>PSIRT Evaluation:</b> The Cisco PSIRT has assigned this bug the following CVSS version 2 score. The Base and Temporal CVSS scores as of the time of evaluation are 5/4.5: https://intellishield.cisco.com/security/alertmanager/cvssCalculator.do?dispatch=1&version=2&vector=AV:N/AC:L/Au:N/C:N/I:N/A:P/E:F/RL:W/RC:C CVE ID CVE-2013-1202 has been assigned to document this issue. Additional details about the vulnerability described here can be found at: http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1202 Additional information on Cisco's security vulnerability policy can be found at the following URL: http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html. http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCug78957 http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtc63117 <B>Symptom:</B> show rserver indicates rserver status s ARP_FAILED show arp has mac address for rserver but is LEARNED state instead of RSERVER you can ping rserver from ace <br> <B>Conditions:</B> rserver is down for load balancing due ARP_FAILED state <br> <B>Workaround:</B> delete rserver and reconfigure <br> <B>Further Problem Description:</B> http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtc63117