安全研究
安全漏洞
Cisco多个产品拒绝服务漏洞(CVE-2019-1694)
发布日期:2019-06-06
更新日期:2019-06-06
受影响系统:
Cisco Firepower 9300 Security Appliance不受影响系统:
Cisco 3000 Series Industrial Security Appliance (ISA)
Cisco Firepower Threat Defense Software 6.4
Cisco Firepower Threat Defense Software 6.3
Cisco Firepower Threat Defense Software 6.2.3
Cisco Firepower Threat Defense Software 6.2.2
Cisco Firepower Threat Defense Software 6.2.1
Cisco Firepower Threat Defense Software 6.2
Cisco Firepower Threat Defense Software 6.0.1
Cisco Firepower Threat Defense Software 6.0
Cisco Cisco Firepower Threat Defense Virtual (FTDv)
Cisco Firepower 4100 Series
Cisco Firepower 2100 Series
Cisco ASA 5500-X Series Firewalls
Cisco Adaptive Security Appliance (ASA) Software 9.9
Cisco Adaptive Security Appliance (ASA) Software 9.8
Cisco Adaptive Security Appliance (ASA) Software 9.7
Cisco Adaptive Security Appliance (ASA) Software 9.6
Cisco Adaptive Security Appliance (ASA) Software 9.5
Cisco Adaptive Security Appliance (ASA) Software 9.4
Cisco Adaptive Security Appliance (ASA) Software 9.12
Cisco Adaptive Security Appliance (ASA) Software 9.10
Cisco ASA Services Module for Cisco Catalyst 6500 Series
Cisco ASA Services Module for Cisco 7600 Series Routers
Cisco Adaptive Security Virtual Appliance (ASAv)
Cisco Firepower Threat Defense Software 6.3.0.3描述:
Cisco Firepower Threat Defense Software 6.2.3.12
Cisco Adaptive Security Appliance (ASA) Software 9.9.2.50
Cisco Adaptive Security Appliance (ASA) Software 9.8.4
Cisco Adaptive Security Appliance (ASA) Software 9.6.4.25
Cisco Adaptive Security Appliance (ASA) Software 9.4.4.34
Cisco Adaptive Security Appliance (ASA) Software 9.10.1.17
BUGTRAQ ID: 108160
CVE(CAN) ID: CVE-2019-1694
思科自适应安全设备 (ASA) 软件是为 Cisco ASA 系列提供强大功能的核心操作系统。它拥有多种外观,为 ASA 设备提供企业级防火墙功能 - 独立式设备(US)、刀片(US)和虚拟。ASA 软件还与其他关键安全技术集成,以提供功能全面的解决方案,满足不断发展的安全需要。
思科的FirePower Threat Defense(FTD)软件整合了ASA特性以及FirePower特性的软性。
思科自适应安全设备(ASA)软件和思科Firepower威胁防御(FTD)软件的TCP处理引擎中的漏洞可能允许未经身份验证的远程攻击者导致受影响的设备重新加载,从而导致拒绝服务(DoS)条件。该漏洞是由于TCP流量处理不当造成的。攻击者可以通过受影响的设备以高速率发送特定的数据包序列来利用此漏洞。成功利用可能允许攻击者在重新启动时暂时中断通过设备的流量。
<*来源:Cisco
链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-asa-frpwrtd-
*>
建议:
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-20190501-asa-frpwrtd-dos)以及相应补丁:
cisco-sa-20190501-asa-frpwrtd-dos:Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software TCP Timer Handling Denial of Service Vulnerability
链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-asa-frpwrtd-
补丁下载:
浏览次数:1176
严重程度:0(网友投票)
绿盟科技给您安全的保障