CVE-2016-1287
CVE-2016-1287
Vexday Risk Score
47Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Proof of concept
Popular PoC on GitHub (33 stars) — exploitation code widely available.
CVSS —EPSS 77.5%KEV nãoPoC públicaNuclei —Metasploit —Patch referenciado
Lifecycle
11 Feb 2016Published on NVD
15 Feb 2016Public PoC
Weaponization speed
3 daysto first PoC
Weaponized quickly — attackers prioritized this vulnerability. Patch urgently.
Recommendation: Plan a near-term fix — a public PoC already exists.
Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7), 9.4 before 9.4(2.4), and 9.5 before 9.5(2.2) on ASA 5500 devices, ASA 5500-X devices, ASA Services Module for Cisco Catalyst 6500 and Cisco 7600 devices, ASA 1000V devices, Adaptive Security Virtual Appliance (aka ASAv), Firepower 9300 ASA Security Module, and ISA 3000 devices allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via crafted UDP packets, aka Bug IDs CSCux29978 and CSCux42019.
Affected products
n/a · n/apublic PoCs found — 5
githubgithub.com/NetSPI/asa_tools★ 33githubgithub.com/jgajek/killasa★ 16cve_referencepacketstormsecurity.com/files/137100/Cisco-ASA-Software-IKEv1-IKEv2-Buffer-Overflow.htmlunverifiedcve_referencewww.exploit-db.com/exploits/39823/unverifiedexploitdbwww.exploit-db.com/exploits/39823unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://packetstormsecurity.com/files/137100/Cisco-ASA-Software-IKEv1-IKEv2-Buffer-Overflow.htmlhttps://blog.exodusintel.com/2016/02/10/firewall-hacking/https://www.exploit-db.com/exploits/39823/https://www.kb.cert.org/vuls/id/327976http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160210-asa-ikehttp://www.securitytracker.com/id/1034997