CVE-2016-9150

Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS versions 5.0.19 and earlier Palo Alto Networks PAN-OS versions 5.1.12 and earlier Palo Alto Networks PAN-OS versions 6.0.14 and earlier Palo Alto Networks PAN-OS versions 6.1.14 and earlier Palo Alto Networks PAN-OS versions 7.0.10 and earlier Palo Alto Networks PAN-OS versions 7.1.5 and earlier

Description A buffer overflow in the management web interface allows remote attackers to execute arbitrary code via unspecified vectors. This issue can result in a possible remote code execution (RCE) or denial-of-service (DoS). An attacker with network access to the management web interface may be able to perform these actions.

Recommendations For versions 5.0.19 and earlier, update to version 5.0.20 or later. For versions 5.1.12 and earlier, update to version 5.1.13 or later. For versions 6.0.14 and earlier, update to version 6.0.15 or later. For versions 6.1.14 and earlier, update to version 6.1.15 or later. For versions 7.0.10 and earlier, update to version 7.0.11 or later. For versions 7.1.5 and earlier, update to version 7.1.6 or later.