CVE-2016-9209

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services version 2.9.7.10 Cisco Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances version 2.9.7.10 Cisco Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances version 2.9.7.10 Cisco FirePOWER 7000 Series Appliances version 2.9.7.10 Cisco FirePOWER 8000 Series Appliances version 2.9.7.10 Cisco FirePOWER Threat Defense for Integrated Services Routers (ISRs) version 2.9.7.10 Cisco Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series version 2.9.7.10 Cisco Sourcefire 3D System Appliances version 2.9.7.10 Cisco Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware version 2.9.7.10

Description A vulnerability in TCP processing could allow an unauthenticated, remote attacker to download files that would normally be blocked.

Recommendations For Cisco Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services version 2.9.7.10, update to a fixed version. For Cisco Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances version 2.9.7.10, update to a fixed version. For Cisco Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances version 2.9.7.10, update to a fixed version. For Cisco FirePOWER 7000 Series Appliances version 2.9.7.10, update to a fixed version. For Cisco FirePOWER 8000 Series Appliances version 2.9.7.10, update to a fixed version. For Cisco FirePOWER Threat Defense for Integrated Services Routers (ISRs) version 2.9.7.10, update to a fixed version. For Cisco Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series version 2.9.7.10, update to a fixed version. For Cisco Sourcefire 3D System Appliances version 2.9.7.10, update to a fixed version. For Cisco Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware version 2.9.7.10, update to a fixed version.