PT-2015-7179 · Cisco · Cisco Asa
Published
2015-10-21
·
Updated
2023-08-15
·
CVE-2015-6325
CVSS v2.0
7.1
High
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Adaptive Security Appliance (ASA) software versions 7.2 and 8.2 before 8.2(5.58)
Cisco Adaptive Security Appliance (ASA) software versions 8.3 and 8.4 before 8.4(7.29)
Cisco Adaptive Security Appliance (ASA) software versions 8.5 through 8.7 before 8.7(1.17)
Cisco Adaptive Security Appliance (ASA) software version 9.0 before 9.0(4.37)
Cisco Adaptive Security Appliance (ASA) software version 9.1 before 9.1(6.4)
Cisco Adaptive Security Appliance (ASA) software version 9.2 before 9.2(4)
Cisco Adaptive Security Appliance (ASA) software version 9.3 before 9.3(3.1)
Cisco Adaptive Security Appliance (ASA) software version 9.4 before 9.4(1.1)
Description
A vulnerability in the DNS code of Cisco Adaptive Security Appliance (ASA) Software could allow remote attackers to cause a denial of service (device reload) via a crafted DNS response.
Recommendations
For version 7.2, update to a version after 7.2.
For version 8.2, update to 8.2(5.58) or later.
For version 8.3, update to 8.4(7.29) or later.
For version 8.4, update to 8.4(7.29) or later.
For version 8.5, update to 8.7(1.17) or later.
For version 8.6, update to 8.7(1.17) or later.
For version 8.7, update to 8.7(1.17) or later.
For version 9.0, update to 9.0(4.37) or later.
For version 9.1, update to 9.1(6.4) or later.
For version 9.2, update to 9.2(4) or later.
For version 9.3, update to 9.3(3.1) or later.
For version 9.4, update to 9.4(1.1) or later.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Asa