Details of VAR-201702-0939

ID

VAR-201702-0939

CVE

CVE-2016-9225

TITLE

Cisco Adaptive Security Appliance CX Context-Aware Security Service disruption in modules (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2016-007754

DESCRIPTION

A vulnerability in the data plane IP fragment handler of the Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security module could allow an unauthenticated, remote attacker to cause the CX module to be unable to process further traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to improper handling of IP fragments. An attacker could exploit this vulnerability by sending crafted fragmented IP traffic across the CX module. An exploit could allow the attacker to exhaust free packet buffers in shared memory (SHM), causing the CX module to be unable to process further traffic, resulting in a DoS condition. This vulnerability affects all versions of the ASA CX Context-Aware Security module. Cisco has not released and will not release software updates that address this vulnerability. There are no workarounds that address this vulnerability. Cisco Bug IDs: CSCva62946. Attackers can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. The vulnerability stems from the fact that the program does not process the IP segment correctly

Trust: 2.07

sources: NVD: CVE-2016-9225 // JVNDB: JVNDB-2016-007754 // BID: 95788 // VULHUB: VHN-98045 // VULMON: CVE-2016-9225

AFFECTED PRODUCTS

vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3_base	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.1-1	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.1.2-29	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.0_base	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.2.2-1	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.3.1-13	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4.1.11	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3\(1.1.112\)	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.0.1	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.0.2-68	Trust: 1.6
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.2.1-1	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4-2	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4-4	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4-1	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.1.3-8	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.0.2	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.0.1-40	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.2-1	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4-3	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4-5	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.3.4-6	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.1.3-10	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.1.3-13	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	eq	version:	9.1.2-42	Trust: 1.0
vendor:	cisco	model:	asa cx context-aware security software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	asa cx context-aware security	scope:	eq	version:	0	Trust: 0.3

sources: BID: 95788 // JVNDB: JVNDB-2016-007754 // CNNVD: CNNVD-201702-069 // NVD: CVE-2016-9225

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-9225
value:	HIGH
Trust: 1.0
NVD:	CVE-2016-9225
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201702-069
value:	HIGH
Trust: 0.6
VULHUB:	VHN-98045
value:	HIGH
Trust: 0.1
VULMON:	CVE-2016-9225
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2016-9225
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-98045
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-9225
baseSeverity:	HIGH
baseScore:	8.6
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	4.0
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-98045 // VULMON: CVE-2016-9225 // JVNDB: JVNDB-2016-007754 // CNNVD: CNNVD-201702-069 // NVD: CVE-2016-9225

PROBLEMTYPE DATA

problemtype:

CWE-399

Trust: 1.9

sources: VULHUB: VHN-98045 // JVNDB: JVNDB-2016-007754 // NVD: CVE-2016-9225

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201702-069

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201702-069

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-007754

PATCH

title:	cisco-sa-20170125-cas	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170125-cas	Trust: 0.8
title:	Threatpost	url:	https://threatpost.com/cisco-warns-of-critical-flaw-in-teleconferencing-gear/123435/	Trust: 0.1

sources: VULMON: CVE-2016-9225 // JVNDB: JVNDB-2016-007754

EXTERNAL IDS

db:	NVD	id:	CVE-2016-9225	Trust: 2.9
db:	BID	id:	95788	Trust: 2.1
db:	SECTRACK	id:	1037696	Trust: 1.8
db:	JVNDB	id:	JVNDB-2016-007754	Trust: 0.8
db:	CNNVD	id:	CNNVD-201702-069	Trust: 0.7
db:	VULHUB	id:	VHN-98045	Trust: 0.1
db:	VULMON	id:	CVE-2016-9225	Trust: 0.1

sources: VULHUB: VHN-98045 // VULMON: CVE-2016-9225 // BID: 95788 // JVNDB: JVNDB-2016-007754 // CNNVD: CNNVD-201702-069 // NVD: CVE-2016-9225

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170125-cas	Trust: 2.1
url:	http://www.securityfocus.com/bid/95788	Trust: 1.8
url:	http://www.securitytracker.com/id/1037696	Trust: 1.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-9225	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-9225	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/399.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://threatpost.com/cisco-warns-of-critical-flaw-in-teleconferencing-gear/123435/	Trust: 0.1

sources: VULHUB: VHN-98045 // VULMON: CVE-2016-9225 // BID: 95788 // JVNDB: JVNDB-2016-007754 // CNNVD: CNNVD-201702-069 // NVD: CVE-2016-9225

CREDITS

Cisco

Trust: 0.3

sources: BID: 95788

SOURCES

db:	VULHUB	id:	VHN-98045
db:	VULMON	id:	CVE-2016-9225
db:	BID	id:	95788
db:	JVNDB	id:	JVNDB-2016-007754
db:	CNNVD	id:	CNNVD-201702-069
db:	NVD	id:	CVE-2016-9225

LAST UPDATE DATE

2024-11-23T23:02:31.238000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-98045	date:	2019-10-09T00:00:00
db:	VULMON	id:	CVE-2016-9225	date:	2019-10-09T00:00:00
db:	BID	id:	95788	date:	2017-02-02T02:01:00
db:	JVNDB	id:	JVNDB-2016-007754	date:	2017-03-15T00:00:00
db:	CNNVD	id:	CNNVD-201702-069	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2016-9225	date:	2024-11-21T03:00:49.890

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-98045	date:	2017-02-01T00:00:00
db:	VULMON	id:	CVE-2016-9225	date:	2017-02-01T00:00:00
db:	BID	id:	95788	date:	2017-01-25T00:00:00
db:	JVNDB	id:	JVNDB-2016-007754	date:	2017-03-15T00:00:00
db:	CNNVD	id:	CNNVD-201702-069	date:	2017-02-06T00:00:00
db:	NVD	id:	CVE-2016-9225	date:	2017-02-01T19:59:00.157