CVE-2016-6366

Warning

Media report

Exploit

EPSS 90.98%
Published 18.08.2016 18:59:00
Last modified 12.04.2025 10:46:40
Source psirt@cisco.com
Teams watchlist Login
Open Login

Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute arbitrary code via crafted IPv4 SNMP packets, aka Bug ID CSCva92151 or EXTRABACON.

Affected products Warnungen 1 Metrics 3 CWE 1 References 11

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Pix Firewall Software Version-

   Cisco ≫ Pix Firewall 501 Version-
   Cisco ≫ Pix Firewall 506 Version-
   Cisco ≫ Pix Firewall 506e Version-
   Cisco ≫ Pix Firewall 515 Version-
   Cisco ≫ Pix Firewall 515e Version-
   Cisco ≫ Pix Firewall 520 Version-
   Cisco ≫ Pix Firewall 525 Version-
   Cisco ≫ Pix Firewall 535 Version-

Cisco ≫ Adaptive Security Appliance Software Version >= 7.2.1 < 9.0.4.40

   Cisco ≫ 7604 Version-
   Cisco ≫ 7606-s Version-
   Cisco ≫ 7609-s Version-
   Cisco ≫ 7613-s Version-
   Cisco ≫ Asa 5500 Version-
   Cisco ≫ Asa 5500-x Version-
   Cisco ≫ Asa 5500 Csc-ssm Version-
   Cisco ≫ Asa 5505 Version-
   Cisco ≫ Asa 5506-x Version-
   Cisco ≫ Asa 5506h-x Version-
   Cisco ≫ Asa 5506w-x Version-
   Cisco ≫ Asa 5508-x Version-
   Cisco ≫ Asa 5510 Version-
   Cisco ≫ Asa 5512-x Version-
   Cisco ≫ Asa 5515-x Version-
   Cisco ≫ Asa 5516-x Version-
   Cisco ≫ Asa 5520 Version-
   Cisco ≫ Asa 5525-x Version-
   Cisco ≫ Asa 5540 Version-
   Cisco ≫ Asa 5545-x Version-
   Cisco ≫ Asa 5550 Version-
   Cisco ≫ Asa 5555-x Version-
   Cisco ≫ Asa 5580 Version-
   Cisco ≫ Asa 5585-x Version-
   Cisco ≫ Catalyst 6500 Version-
   Cisco ≫ Catalyst 6500-e Version-
   Cisco ≫ Catalyst 6503-e Version-
   Cisco ≫ Catalyst 6504-e Version-
   Cisco ≫ Catalyst 6506-e Version-
   Cisco ≫ Catalyst 6509-e Version-
   Cisco ≫ Catalyst 6509-neb-a Version-
   Cisco ≫ Catalyst 6509-v-e Version-
   Cisco ≫ Catalyst 6513 Version-
   Cisco ≫ Catalyst 6513-e Version-

Cisco ≫ Adaptive Security Appliance Software Version >= 9.1.1 < 9.1.7\(9\)

Cisco ≫ Adaptive Security Appliance Software Version >= 9.2.0 < 9.2.4\(14\)

Cisco ≫ Adaptive Security Appliance Software Version >= 9.3.0 < 9.3.3\(10\)

Cisco ≫ Adaptive Security Appliance Software Version >= 9.4.0.115 < 9.4.3\(8\)

Cisco ≫ Adaptive Security Appliance Software Version >= 9.5.0 <= 9.5\(3\)

Cisco ≫ Adaptive Security Appliance Software Version >= 9.6.0 < 9.6.1\(11\)

Cisco ≫ Asa 1000v Cloud Firewall Software Version8.7.1

Cisco ≫ Asa 1000v Cloud Firewall Software Version8.7.1.1

24.05.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Cisco Adaptive Security Appliance (ASA) SNMP Buffer Overflow Vulnerability

Vulnerability

A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.

Description

Apply updates per vendor instructions.

Required actions

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	90.98%	0.996

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	8.5	6.8	10	AV:N/AC:M/Au:S/C:C/I:C/A:C

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

http://blogs.cisco.com/security/shadow-brokers

Vendor Advisory

Exploit

Press/Media Coverage

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-snmp

Vendor Advisory

http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-56516

Vendor Advisory

http://www.securityfocus.com/bid/92521

Third Party Advisory

Broken Link

VDB Entry