複数の Cisco 製品にサービス運用妨害 (DoS) の脆弱性

最終更新日: 2017/04/26

情報源

US-CERT Current Activity
Cisco Releases Security Updates
https://www.us-cert.gov/ncas/current-activity/2017/04/19/Cisco-Releases-Security-Updates

概要

複数の Cisco 製品には、脆弱性があります。結果として、遠隔の第三者がサービス運用妨害 (DoS) 攻撃を行う可能性があります。
対象となる製品は以下の通りです。

– Cisco ASA 1000V Cloud Firewall
– Cisco ASA 5500 Series Adaptive Security Appliances
– Cisco ASA 5500-X Series Next-Generation Firewalls
– Cisco ASA 5500-X Series with FirePOWER Services
– Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches
– Cisco ASA Services Module for Cisco 7600 Series Routers
– Cisco ASA for Firepower 9300 Series
– Cisco Adaptive Security Virtual Appliance (ASAv)
– Cisco Firepower 9300 ASA Security Module
– Cisco ISA 3000 Industrial Security Appliance
– Cisco Advanced Malware Protection (AMP) for Networks, 7000 Series Appliances
– Cisco Advanced Malware Protection (AMP) for Networks, 8000 Series Appliances
– Cisco Firepower 4100 Series Security Appliances
– Cisco FirePOWER 7000 Series Appliances
– Cisco FirePOWER 8000 Series Appliances
– Cisco Firepower 9300 Series Security Appliances
– Cisco FirePOWER Threat Defense for Integrated Services Routers (ISRs)
– Cisco Industrial Security Appliance 3000
– Cisco Sourcefire 3D System Appliances
– Cisco Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware
– Cisco Unified Communications Manager (CallManager)
– Cisco IOS
– Cisco IOS XE

この問題は、該当する製品を Cisco が提供する修正済みのバージョンに更新することで解決します。詳細は、Cisco が提供する情報を参照してください。

関連文書 (英語)

Cisco Security Advisory
Cisco ASA Software DNS Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-asa-dns

Cisco Security Advisory

Cisco ASA Software IPsec Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-asa-ipsec

Cisco Security Advisory

Cisco ASA Software SSL/TLS Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-asa-tls

Cisco Security Advisory

Cisco ASA Software Internet Key Exchange Version 1 XAUTH Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-asa-xauth

Cisco Security Advisory

Cisco IOS and IOS XE Software EnergyWise Denial of Service Vulnerabilities
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-energywise

Cisco Security Advisory

Cisco Firepower Detection Engine Pragmatic General Multicast Protocol Decoding Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-fpsnort

Cisco Security Advisory

Cisco Unified Communications Manager Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-ucm

 

引用元:JPCERTコーディネーションセンター
「JPCERT/CC WEEKLY REPORT 2017-04-26」
https://www.jpcert.or.jp/wr/2017/wr171601.html