一、 漏洞 CVE-2016-6368 基础信息
漏洞标题
N/A
来源:AIGC 神龙大模型
漏洞描述信息
Cisco Firepower System Software中的检测引擎解析Pragmatic General Multicast(PGM)协议包的漏洞可能导致无验证的远程攻击者发起拒绝服务(DoS)条件,因为Snort进程意外重启。该漏洞是由于PGM协议包中字段的输入验证不正确。攻击者可以通过向目标设备上的检测引擎发送精心构造的PGM包来利用此漏洞。如果Snort进程重启,攻击者可以使用它来造成DoS条件,或者通过过滤流量或丢弃流量来绕过流量检查。此漏洞影响具有配置一个或多个文件行为策略的 Cisco Firepower System Software,并运行在以下 Cisco产品上:Adaptive Security Appliance(ASA)5500-X系列具有 Fire Power 服务;Adaptive Security Appliance(ASA)5500-X系列下一代防火墙;高级网络Malware保护(AMP)适用于网络,7000系列设备;高级网络Malware保护(AMP)适用于网络,8000系列设备;Firepower 4100系列安全 appliances;Firepower 7000系列设备;Firepower 8000系列设备;Firepower 9300系列安全 appliances;集成服务路由器(ISR)的 Fire Power 威胁防御;工业安全 appliance 3000;Sourcefire 3D System Appliances;Virtual Next-Generation 入侵防御系统(NGIPSv)for VMware。固定版本:5.4.0.10 5.4.1.9 6.0.1.3 6.1.0 6.2.0。Cisco bug ID: CSCuz00876。
来源:AIGC 神龙大模型
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
来源:AIGC 神龙大模型
漏洞类别
N/A
来源:AIGC 神龙大模型
漏洞标题
N/A
来源:美国国家漏洞数据库 NVD
漏洞描述信息
A vulnerability in the detection engine parsing of Pragmatic General Multicast (PGM) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper input validation of the fields in the PGM protocol packet. An attacker could exploit this vulnerability by sending a crafted PGM packet to the detection engine on the targeted device. An exploit could allow the attacker to cause a DoS condition if the Snort process restarts and traffic inspection is bypassed or traffic is dropped. This vulnerability affects Cisco Firepower System Software that has one or more file action policies configured and is running on any of the following Cisco products: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services; Adaptive Security Appliance (ASA) 5500-X Series Next-Generation Firewalls; Advanced Malware Protection (AMP) for Networks, 7000 Series Appliances; Advanced Malware Protection (AMP) for Networks, 8000 Series Appliances; Firepower 4100 Series Security Appliances; FirePOWER 7000 Series Appliances; FirePOWER 8000 Series Appliances; Firepower 9300 Series Security Appliances; FirePOWER Threat Defense for Integrated Services Routers (ISRs); Industrial Security Appliance 3000; Sourcefire 3D System Appliances; Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. Fixed versions: 5.4.0.10 5.4.1.9 6.0.1.3 6.1.0 6.2.0. Cisco Bug IDs: CSCuz00876.
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
资源管理错误
来源:美国国家漏洞数据库 NVD
漏洞标题
多款Cisco产品Firepower System Software 资源管理错误漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Cisco Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services等都是美国思科(Cisco)公司的产品。Cisco Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services是一系列防火墙设备;Advanced Malware Protection (AMP) for Networks,7000 Series Appliances是一
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
资源管理错误
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2016-6368 的公开POC
# POC 描述 源链接 神龙链接
三、漏洞 CVE-2016-6368 的情报信息