CISCO : Cisco ASA 5500 Devices DoS Vulnerability (cisco-sa-20160309-csc)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.806690

Categoría: CISCO

Título: Cisco ASA 5500 Devices DoS Vulnerability (cisco-sa-20160309-csc)

Resumen: Cisco ASA 5500 devices are prone to a denial of service (DoS); vulnerability.

Descripción: Summary:
Cisco ASA 5500 devices are prone to a denial of service (DoS)
vulnerability.

Vulnerability Insight:
The flaw is due to an error in the HTTPS inspection engine of
the Cisco ASA Content Security and Control Security Services Module (CSC-SSM) which improperly
handles HTTPS packets transiting through the affected system.

Vulnerability Impact:
Successful exploitation allows the attacker to cause exhaustion
of available memory, system instability, and a reload of the affected system.

Affected Software/OS:
Cisco ASA 5500-X Series Firewalls with software version 6.6.x
prior to 6.6.1164.0.

Note: Cisco ASA 5500-X Series Firewalls with version 6.6.1157.0 are not vulnerable.

Solution:
Update to version 6.6.1164.0 or later.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-1312
BugTraq ID: 84281
http://www.securityfocus.com/bid/84281
Cisco Security Advisory: 20160309 Cisco ASA Content Security and Control Security Services Module Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-csc
http://www.securitytracker.com/id/1035230

Copyright Copyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.806690
Categoría:	CISCO
Título:	Cisco ASA 5500 Devices DoS Vulnerability (cisco-sa-20160309-csc)
Resumen:	Cisco ASA 5500 devices are prone to a denial of service (DoS); vulnerability.
Descripción:	Summary: Cisco ASA 5500 devices are prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to an error in the HTTPS inspection engine of the Cisco ASA Content Security and Control Security Services Module (CSC-SSM) which improperly handles HTTPS packets transiting through the affected system. Vulnerability Impact: Successful exploitation allows the attacker to cause exhaustion of available memory, system instability, and a reload of the affected system. Affected Software/OS: Cisco ASA 5500-X Series Firewalls with software version 6.6.x prior to 6.6.1164.0. Note: Cisco ASA 5500-X Series Firewalls with version 6.6.1157.0 are not vulnerable. Solution: Update to version 6.6.1164.0 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1312 BugTraq ID: 84281 http://www.securityfocus.com/bid/84281 Cisco Security Advisory: 20160309 Cisco ASA Content Security and Control Security Services Module Denial of Service Vulnerability https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-csc http://www.securitytracker.com/id/1035230
Copyright	Copyright (C) 2016 Greenbone Networks GmbH