CVE-2015-4238

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 8.4(7) through 8.6(1.2)

Description The issue is related to the SNMP implementation and is caused by resource management errors. It allows a remote authenticated user to cause a denial of service by sending many SNMP requests, particularly during high network traffic, resulting in a device reload.

Recommendations For version 8.4(7), update to a version that fixes the resource management errors in the SNMP implementation to prevent denial of service attacks. For version 8.6(1.2), apply configuration changes to limit the impact of multiple SNMP requests during high network traffic, and consider updating to a newer version that addresses the SNMP implementation issue. As a temporary workaround, consider restricting access to the SNMP service or limiting the number of SNMP requests allowed during a certain time frame to minimize the risk of exploitation.