CVE-2017-12245

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software versions 6.0.1 and later

Description A vulnerability in SSL traffic decryption could allow an unauthenticated, remote attacker to cause depletion of system memory, potentially leading to a denial of service (DoS) condition. This occurs due to an error in how the Firepower Detection Snort Engine handles SSL traffic decryption and notifications. An attacker could exploit this by sending malicious SSL traffic, causing the device to run low on system memory and potentially cease forwarding traffic.

Recommendations For Cisco Firepower Threat Defense (FTD) Software versions 6.0.1 and later, consider restricting SSL traffic to minimize the risk of exploitation until a patch is available. As a temporary workaround, limiting the amount of SSL traffic processed by the device may help mitigate the issue.