https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760185#M1097096 <P><a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/326046">@Marvin Rhoads</a>&nbsp;, I'm not gonna lie, I was waiting for a confirm about this. The CVE is indeed from 2004.</P><P>Thank you</P> Mon, 23 Jan 2023 17:54:06 GMT MarcoLazzarotto 2023-01-23T17:54:06Z https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760113#M1097088 <P>Hello,</P><P>a vulnerability test detected "<SPAN>TCP Sequence Number Approximation Based Denial of Service" vulnerability (CVE-2004-0230) on a ASA 5506.</SPAN></P><P><SPAN>The ASA should be running on 9.8(2).</SPAN></P><P><SPAN>How do I find when (what firmware version) Cisco fixed the vulnerability?</SPAN></P> Mon, 23 Jan 2023 16:20:33 GMT https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760113#M1097088 MarcoLazzarotto 2023-01-23T16:20:33Z https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760136#M1097090 <P>Product is EOL - (you need to uplift to latest models - Cisco Secure firewalls (aka FTD)</P> <P><A href="https://www.cisco.com/c/en/us/products/collateral/security/asa-5500-series-next-generation-firewalls/eos-eol-notice-c51-744797.html" target="_blank">https://www.cisco.com/c/en/us/products/collateral/security/asa-5500-series-next-generation-firewalls/eos-eol-notice-c51-744797.html</A></P> Mon, 23 Jan 2023 16:45:35 GMT https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760136#M1097090 balaji.bandi 2023-01-23T16:45:35Z https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760148#M1097091 <P>I understand. Would I be able to fix the issue by updating to latest available firmware?</P> Mon, 23 Jan 2023 17:06:36 GMT https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760148#M1097091 MarcoLazzarotto 2023-01-23T17:06:36Z https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760158#M1097092 <P>where do you get latest firmware and product not sold or giving support by Cisco ?</P> <P>&nbsp;</P> Mon, 23 Jan 2023 17:14:10 GMT https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760158#M1097092 balaji.bandi 2023-01-23T17:14:10Z https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760179#M1097095 <P>I'd be surprised if this is a true positive alert since the CVE (from 2004) was identified 11 years before the ASA 5506 was first&nbsp; released (in 2015). The last software released for the ASA 5506 was 9.16(4)9 in November 2022.</P> Mon, 23 Jan 2023 17:41:11 GMT https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760179#M1097095 Marvin Rhoads 2023-01-23T17:41:11Z https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760185#M1097096 <P><a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/326046">@Marvin Rhoads</a>&nbsp;, I'm not gonna lie, I was waiting for a confirm about this. The CVE is indeed from 2004.</P><P>Thank you</P> Mon, 23 Jan 2023 17:54:06 GMT https://community.cisco.com/t5/network-security/cve-2004-0230-detected-fixed-firmware-for-asa-5506/m-p/4760185#M1097096 MarcoLazzarotto 2023-01-23T17:54:06Z