CVE-2016-1287
Last modified
CVE-2016-1287 is a vulnerability of currently unknown severity. Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7), 9.4 before 9.4(2.4), and 9.5 before 9.5(2.2) on ASA 5500 devices, ASA 5500-X devices, ASA Services Module for Cisco Catalyst 6500 and Cisco 7600 devices, ASA 1000V devices, Adaptive Security Virtual Appliance (aka ASAv), Firepower 9300 ASA Security Module, and ISA 3000 devices allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via crafted UDP packets, aka Bug IDs CSCux29978 and CSCux42019.. EPSS estimates a 77.46% chance of exploitation in the next 30 days.
Description
Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7), 9.4 before 9.4(2.4), and 9.5 before 9.5(2.2) on ASA 5500 devices, ASA 5500-X devices, ASA Services Module for Cisco Catalyst 6500 and Cisco 7600 devices, ASA 1000V devices, Adaptive Security Virtual Appliance (aka ASAv), Firepower 9300 ASA Security Module, and ISA 3000 devices allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via crafted UDP packets, aka Bug IDs CSCux29978 and CSCux42019.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Adaptive Security Appliance Software | 7.2.1 |
| Cisco | Adaptive Security Appliance Software | 7.2.1.9 |
| Cisco | Adaptive Security Appliance Software | 7.2.1.13 |
| Cisco | Adaptive Security Appliance Software | 7.2.1.19 |
| Cisco | Adaptive Security Appliance Software | 7.2.1.24 |
| Cisco | Adaptive Security Appliance Software | 7.2.2 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.6 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.10 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.14 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.18 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.19 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.22 |
| Cisco | Adaptive Security Appliance Software | 7.2.2.34 |
| Cisco | Adaptive Security Appliance Software | 7.2.3 |
| Cisco | Adaptive Security Appliance Software | 7.2.3.1 |
| Cisco | Adaptive Security Appliance Software | 7.2.3.12 |
| Cisco | Adaptive Security Appliance Software | 7.2.3.16 |
| Cisco | Adaptive Security Appliance Software | 7.2.4 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.6 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.9 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.18 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.25 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.27 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.30 |
| Cisco | Adaptive Security Appliance Software | 7.2.4.33 |
| Cisco | Adaptive Security Appliance Software | 7.2.5 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.2 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.4 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.7 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.8 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.10 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.12 |
| Cisco | Adaptive Security Appliance Software | 7.2.5.16 |
| Cisco | Adaptive Security Appliance Software | 8.2.0.45 |
| Cisco | Adaptive Security Appliance Software | 8.2.1 |
| Cisco | Adaptive Security Appliance Software | 8.2.1.11 |
| Cisco | Adaptive Security Appliance Software | 8.2.2 |
| Cisco | Adaptive Security Appliance Software | 8.2.2.9 |
| Cisco | Adaptive Security Appliance Software | 8.2.2.10 |
| Cisco | Adaptive Security Appliance Software | 8.2.2.12 |
| Cisco | Adaptive Security Appliance Software | 8.2.2.16 |
| Cisco | Adaptive Security Appliance Software | 8.2.2.17 |
| Cisco | Adaptive Security Appliance Software | 8.2.3 |
| Cisco | Adaptive Security Appliance Software | 8.2.4 |
| Cisco | Adaptive Security Appliance Software | 8.2.4.1 |
| Cisco | Adaptive Security Appliance Software | 8.2.4.4 |
| Cisco | Adaptive Security Appliance Software | 8.2.5 |
| Cisco | Adaptive Security Appliance Software | 8.2.5.13 |
| Cisco | Adaptive Security Appliance Software | 8.2.5.22 |
| Cisco | Adaptive Security Appliance Software | 8.2.5.26 |
Showing 50 of 199 affected configurations. See NVD for the full list.
References
- http://packetstormsecurity.com/files/137100/Cisco-ASA-Software-IKEv1-IKEv2-Buffer-Overflow.htmlExploit, Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034997Third Party Advisory, VDB Entry
- https://blog.exodusintel.com/2016/02/10/firewall-hacking/Exploit, Technical Description, Third Party Advisory
- https://www.exploit-db.com/exploits/39823/Exploit, Third Party Advisory, VDB Entry
- https://www.kb.cert.org/vuls/id/327976Third Party Advisory, US Government Resource
- http://packetstormsecurity.com/files/137100/Cisco-ASA-Software-IKEv1-IKEv2-Buffer-Overflow.htmlExploit, Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034997Third Party Advisory, VDB Entry
- https://blog.exodusintel.com/2016/02/10/firewall-hacking/Exploit, Technical Description, Third Party Advisory
- https://www.exploit-db.com/exploits/39823/Exploit, Third Party Advisory, VDB Entry
- https://www.kb.cert.org/vuls/id/327976Third Party Advisory, US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-1287?
How severe is CVE-2016-1287?
How do I fix CVE-2016-1287?
Are you affected by CVE-2016-1287?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST