CVE-2017-3807

Name of the Vulnerable Software and Affected Versions Cisco ASA Software versions 9.0 through 9.6

Description The issue is caused by insufficient validation of user-supplied input and a heap overflow in the Common Internet Filesystem (CIFS) code of the Clientless SSL VPN functionality. This could allow a remote attacker to cause a system reload or potentially execute code by sending a crafted URL to the affected system. The attack requires a valid TCP connection and can be triggered by IPv4 or IPv6 traffic. The attacker must have valid credentials to log in to the Clientless SSL VPN portal.

Recommendations For Cisco ASA Software versions 9.0 through 9.6, update to a fixed version to resolve the issue. As a temporary workaround, consider restricting access to the Clientless SSL VPN portal and limiting the use of CIFS code to minimize the risk of exploitation. Ensure that only necessary and trusted users have access to the portal, and monitor system logs for suspicious activity.