Intrusion PreventionEMC.AppSync.Host.Plugin.DoS
Description
This indicates an attack attempt against a Denial-of-Service (DoS) vulnerability in EMC AppSync Host Plug-in (AppSync agent).
The vulnerability is due to an error when the vulnerable software on Windows platforms processes a large amount of network packets. An unauthenticated remote attacker can send specifically crafted packets to the vulnerable service and cause denial of service condition.
Affected Products
EMC AppSync host plug-in versions 3.5 and below (Windows platform only)
Impact
Denial of Service: Remote attackers can crash vulnerable application.
Recommended Actions
Upgrade to EMC AppSync Host Plug-in version 3.1 followed by deploying Host Plug-in patch version 3.1.0.3.
Upgrade to EMC AppSync Host Plug-in version 3.5 followed by deploying with AppSync security update for Windows.
https://support.emc.com/downloads/25364_AppSync
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-06-13 | 14.632 | Severity:medium:high |
| ID | 44567 |
| Created | Oct 04, 2017 |
| Updated | May 02, 2022 |
| Risk |
|
| CVE ID | CVE-2017-8018 |
| Exploit Prediction Score | 0.08% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |