CVE-2015-4239

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 9.3(2.243) and 9.13(0.21)

Description The issue is related to resource management errors in the Cisco Adaptive Security Appliance, allowing an unauthenticated, adjacent attacker to cause a denial of service by sending crafted OSPFv2 packets on the local network. This can lead to a device reload.

Recommendations For version 9.3(2.243), update to a fixed version to resolve the issue. For version 9.13(0.21), update to a fixed version to resolve the issue. As a temporary workaround, consider restricting access to the OSPFv2 protocol to minimize the risk of exploitation.