CVE-2016-6367

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions prior to 8.4(1)

Description The issue is caused by a buffer overflow in the Cisco Adaptive Security Appliance software. It allows an authenticated, local attacker to potentially execute arbitrary code or create a denial of service condition by invoking certain invalid commands in the command-line interface (CLI) parser.

Recommendations For versions prior to 8.4(1), update to version 8.4(1) or later to resolve the issue. As a temporary workaround, consider restricting access to the CLI interface to minimize the risk of exploitation. Avoid using invalid commands in the CLI to prevent potential arbitrary code execution or denial of service conditions.