CVE-2016-6424

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software versions 8.4.7.29 through 9.1.7.4

Description A denial of service issue exists due to the improper handling of DHCP packets by the DHCP Relay feature. This can be exploited by an unauthenticated, adjacent attacker to cause an interface wedge, resulting in a denial of service condition.

Recommendations For Cisco Adaptive Security Appliance (ASA) Software versions 8.4.7.29 through 9.1.7.4, consider disabling the DHCP Relay feature as a temporary workaround until a patch is available. Restrict access to the DHCP Relay functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.