CVE-2019-1697

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified) Firepower Threat Defense (FTD) Software (affected versions not specified)

Description A vulnerability in the implementation of the Lightweight Directory Access Protocol (LDAP) feature could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to the improper parsing of LDAP packets sent to an affected device. An attacker could exploit this vulnerability by sending a crafted LDAP packet, using Basic Encoding Rules (BER), to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.