[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Cisco Security Advisory: Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Cisco Security Advisory: Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability
From: Cisco Systems Product Security Incident Response Team <psirt@xxxxxxxxx>
Date: Wed, 21 Oct 2015 12:41:34 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Cisco Security Advisory: Cisco ASA Software DHCPv6 Relay Denial of Service 
Vulnerability

Advisory ID: cisco-sa-20151021-asa-dhcp1

Revision 1.0

For Public Release 2015 October 21 16:00  UTC (GMT)

+---------------------------------------------------------------------

Summary
=======
A vulnerability in the DHCPv6 relay feature of Cisco Adaptive Security 
Appliance (ASA) software could allow an unauthenticated, remote attacker to 
cause an affected device to reload.

The vulnerability is due to insufficient validation of DHCPv6 packets. Cisco 
ASA Software is affected by this vulnerability only if the software is 
configured with the DHCPv6 relay feature. An attacker could exploit this 
vulnerability by sending crafted DHCPv6 packets to an affected device.


Cisco has released software updates that address this vulnerability. 
Workarounds that mitigate this vulnerability are not available. This advisory 
is available at the following link: 
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dhcp1



-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - https://gpgtools.org
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=Ovg7
-----END PGP SIGNATURE-----

Prev by Date: Cisco Security Advisory: Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability
Next by Date: Cisco Security Advisory: Cisco ASA Software DNS Denial of Service Vulnerability
Previous by thread: Cisco Security Advisory: Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability
Next by thread: Cisco Security Advisory: Cisco ASA Software DNS Denial of Service Vulnerability
Index(es):
- Date
- Thread