CVE-2016-9225

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security module (affected versions not specified)

Description A vulnerability in the data plane IP fragment handler could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition by sending crafted fragmented IP traffic. The issue is due to improper handling of IP fragments, which can lead to the exhaustion of free packet buffers in shared memory, preventing the module from processing further traffic.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.