1)漏洞描述
Cisco Adaptive Security Appliance是一款自适应安全设备,可提供安全和VPN服务的模块。
Cisco ASA Software的DNS代码存在安全漏洞,可使未经身份验证的远程攻击者利用此漏洞耗尽可用内存,导致系统崩溃。
2)影响产品
Cisco Adaptive Security Appliance (ASA) Software 7.2(<7.2(5.16))
Cisco Adaptive Security Appliance (ASA) Software
8.2(<8.2(5.57))
Cisco Adaptive Security Appliance (ASA) Software
8.3(<8.3(2.44))
Cisco Adaptive Security Appliance (ASA) Software
8.4(<8.4(7.28))
Cisco Adaptive Security Appliance (ASA) Software
8.5(<8.5(1.24))
Cisco Adaptive Security Appliance (ASA) Software
8.6(<8.6(1.17))
Cisco Adaptive Security Appliance (ASA) Software
8.7(<8.7(1.16))
3)处置建议
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-asa