PT-2016-4738 · Cisco · Cisco Asa
Published
2016-05-05
·
Updated
2016-12-01
·
CVE-2016-1369
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco ASA with FirePOWER Services versions 5.3.1 through 6.0.0
Description
The issue is related to the misconfiguration of kernel logging in the Adaptive Security Appliance (ASA) 5585-X FirePOWER Security Services Processor (SSP) module. This misconfiguration allows remote attackers to cause a denial of service by consuming resources and potentially causing an inspection outage or module outage via a flood of crafted IP traffic.
Recommendations
For versions 5.3.1 through 6.0.0, update to a version that properly configures kernel logging to prevent the denial of service.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Asa