1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: CISCO ASA CVE-2018-0296

Web Attack: CISCO ASA CVE-2018-0296

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a remote code execution vulnerability in Cisco Adaptive Security Appliance Software.

Additional Information

Cisco Adaptive Security Appliance (ASA) is a network security device.

Cisco Adaptive Security Appliance (ASA) is prone to a remote denial-of-service vulnerability because it fails to properly validate HTTP requests. Specially, this issue affects the web interface. An attacker can exploit this issue by sending a crafted HTTP request to an affected device. This may cause a denial-of-service condition or unauthenticated disclosure of information.

Note: This vulnerability applies to IPv4 and IPv6 HTTP traffic.

Successful exploits may allow an attacker to reload the affected device, resulting in a denial-of-service conditions.

This issue is being tracked by Cisco Bug ID CSCvi16029.

Affected

  • The following Allen-Bradley Stratix 5950 Security Appliances, running the Cisco ASA v9.6.2 and prior, are affected:
  • 1783-SAD4T0SBK9,
  • 1783-SAD4T0SPK9,
  • 1783-SAD2T2SBK9, and
  • 1783-SAD2T2SPK9
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube