Cisco has issued a security advisory for its Cisco Content Delivery System (Cisco CDS). The web server component of the Cisco Internet Streamer application contains a vulnerability that can make the web server crash when processing specially crafted URLs. In response Cisco has released a patch.
An unauthenticated attacker may be able to exploit this vulnerability to cause a denial of service condition on the web server that is running on the Service Engine. The device will remain operational, and the Web Engine will restart if the attack stops.