Cisco Fixes RCE Bug Rated 10 Out of 10 on Severity Scale[source: bleepingcomputer]
by CIRT Team
Cisco has released software patches that fix a major vulnerability affecting Cisco devices running Adaptive Security Appliance (ASA) Software.
Cisco ASA Software is the core operating system for the Cisco ASA Family, a class of security-centric networking devices that combine firewall, antivirus, intrusion prevention, and virtual private network (VPN) capabilities.
According to a security advisory published today, older versions of Cisco ASA Software are affected by a vulnerability in the operating system’s Secure Sockets Layer (SSL) VPN functionality.
Flaw affects ASA devices with VPN feature turned on
The vulnerability —tracked using the CVE-2018-0101 identifier— affects the following Cisco ASA devices —but only if they have the “webvpn” feature is enabled in the OS settings.
— 3000 Series Industrial Security Appliance (ISA)
— ASA 5500 Series Adaptive Security Appliances
— ASA 5500-X Series Next-Generation Firewalls
— ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
— ASA 1000V Cloud Firewall
— Adaptive Security Virtual Appliance (ASAv)
— Firepower 2100 Series Security Appliance
— Firepower 4110 Security Appliance
— Firepower 9300 ASA Security Module
— Firepower Threat Defense Software (FTD)
Cisco says that an attacker can send malformed XML packets to such devices and execute malicious code on the device. Depending on the code’s nature, an attacker can gain control over the device.
For more, click here.