SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Firewall)  >   Cisco ASA Vendors:   Cisco
Cisco ASA Logging Flaw in FirePOWER Services Kernel Lets Remote Users Deny Service
SecurityTracker Alert ID:  1035743
SecurityTracker URL:  http://securitytracker.com/id/1035743
CVE Reference:   CVE-2016-1369   (Links to External Site)
Date:  May 4 2016
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): ASA 5585-X FirePOWER SSP modules
Description:   A vulnerability was reported in Cisco ASA with the Cisco FirePOWER module. A remote user can cause denial of service conditions on the target system.

A remote user can send a flood of specially crafted IP packets to the target device to consume excessive system resources and cause the target Cisco FirePOWER module to stop inspecting traffic or to go offline.

The kernel logging configuration for the Firepower System Software for the Adaptive Security Appliance (ASA) 5585-X FirePOWER Security Services Processor (SSP) module is affected.

The vendor has assigned bug ID CSCux19922 to this vulnerability.

Impact:   A remote user can cause the target Cisco FirePOWER module to stop inspecting traffic or to go offline.
Solution:   The vendor has issued a fix.

The vendor's advisory is available at:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-fpkern

Vendor URL:  tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-fpkern (Links to External Site)
Cause:   Resource error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC