複数の Cisco 製品に脆弱性

最終更新日: 2016/10/27

情報源

US-CERT Current Activity
Cisco Releases Security Updates
https://www.us-cert.gov/ncas/current-activity/2016/10/19/Cisco-Releases-Security-Updates

概要

複数の Cisco 製品には、脆弱性があります。結果として、遠隔の第三者が、任意のコードを実行したり、サービス運用妨害 (DoS) 攻撃を行ったりするなどの可能性があります。
対象となる製品およびバージョンは以下の通りです。

– Cisco ASA 5500 Series Adaptive Security Appliances
– Cisco ASA 5500-X Series Next-Generation Firewalls
– Cisco ASA 5500-X Series with FirePOWER Services 5.4.1.5
– Cisco ASA 5500-X Series with FirePOWER Services 6.0
– Cisco ASA 5500-X Series with FirePOWER Services 6.0.0.1
– Cisco Catalyst 6500 Series/7600 Series ASA Services Module
– Cisco ASA 1000V Cloud Firewall
– Cisco Adaptive Security Virtual Appliance (ASAv)
– Cisco ASA for Firepower 9300 Series
– Cisco ASA for Firepower 4100 Series
– Cisco ISA 3000 Industrial Security Appliance
– Cisco Advanced Malware Protection (AMP) for Networks, 7000 Series Appliances 5.4.1.5
– Cisco Advanced Malware Protection (AMP) for Networks, 7000 Series Appliances 6.0
– Cisco Advanced Malware Protection (AMP) for Networks, 7000 Series Appliances 6.0.0.1
– Cisco Advanced Malware Protection (AMP) for Networks, 8000 Series Appliances 5.4.1.5
– Cisco Advanced Malware Protection (AMP) for Networks, 8000 Series Appliances 6.0
– Cisco Advanced Malware Protection (AMP) for Networks, 8000 Series Appliances 6.0.0.1
– Cisco Firepower 4100 Series Security Appliances 5.4.1.5
– Cisco Firepower 4100 Series Security Appliances 6.0
– Cisco Firepower 4100 Series Security Appliances 6.0.0.1
– Cisco FirePOWER 7000 Series Appliances 5.4.1.5
– Cisco FirePOWER 7000 Series Appliances 6.0
– Cisco FirePOWER 7000 Series Appliances 6.0.0.1
– Cisco FirePOWER 8000 Series Appliances 5.4.1.5
– Cisco FirePOWER 8000 Series Appliances 6.0
– Cisco FirePOWER 8000 Series Appliances 6.0.0.1
– Cisco Firepower 9300 Series Security Appliances 5.4.1.5
– Cisco Firepower 9300 Series Security Appliances 6.0
– Cisco Firepower 9300 Series Security Appliances 6.0.0.1
– Cisco FirePOWER Threat Defense for Integrated Services Routers (ISRs) 5.4.1.5
– Cisco FirePOWER Threat Defense for Integrated Services Routers (ISRs) 6.0
– Cisco FirePOWER Threat Defense for Integrated Services Routers (ISRs) 6.0.0.1
– Cisco Sourcefire 3D System Appliances 5.4.1.5
– Cisco Sourcefire 3D System Appliances 6.0
– Cisco Sourcefire 3D System Appliances 6.0.0.1
– Cisco Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware 5.4.1.5
– Cisco Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware 6.0
– Cisco Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware 6.0.0.1
– Cisco Meeting Server

この問題は、該当する製品を Cisco が提供する修正済みのバージョンに更新することで解決します。詳細は、Cisco が提供する情報を参照してください。

関連文書 (英語)

Cisco Security Advisory
Cisco ASA Software Identity Firewall Feature Buffer Overflow Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161019-asa-idfw

Cisco Security Advisory

Cisco Firepower Detection Engine HTTP Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161019-fpsnort

Cisco Security Advisory

Cisco ASA Software Local Certificate Authority Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161019-asa-ca

Cisco Security Advisory

Cisco Meeting Server Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161019-cms1

Cisco Security Advisory

Cisco Meeting Server Cross-Site Request Forgery Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161019-cms

 

引用元:JPCERTコーディネーションセンター
「JPCERT/CC WEEKLY REPORT 2016-10-26」
https://www.jpcert.or.jp/wr/2016/wr164201.html