Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
973
Views
5
Helpful
9
Replies

CSCux42019 - Cisco ASA IKEv1 and IKEv2 Buffer Overflow Vulnerability

Go to solution
Jesus Cano Villar
Level 1
Level 1

‎02-23-2016 01:54 AM - edited ‎03-20-2019 08:51 PM

Hi,

WE have a CISCO ASA 5520 with firmware  8.4.7-15 and i would like to know if this appliance/firmware is affected by this new vulnerability "ASA IKEv1/IKEv2 - Buffer Overflow Vulnerability".

Thanks a lot

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee

‎02-23-2016 07:15 AM

Hi Jesus,

Yes it is affected.

Please upgrade to the recommended fixes.

Since it is fixed in 8.4.7.30 you can try upgrading to this image.

Regards,

Aditya

View solution in original post

9 Replies 9

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee

‎02-23-2016 07:15 AM

Hi Jesus,

Yes it is affected.

Please upgrade to the recommended fixes.

Since it is fixed in 8.4.7.30 you can try upgrading to this image.

Regards,

Aditya

Go to solution
f.djoubar1
Level 1
Level 1
In response to Aditya Ganjoo

‎03-01-2016 02:09 AM

Hello, 

we do have an issue. We have a lot of 5505. We were given the 9.2.4.5 patch and we have since that two reactions: 

- NAT rules disappear. 

- Firewall reboot without being able to take hand on the firewall except on console mode to do a rollback. 

Do you have another hotfix available? or a solution to not crash the firewalls? 

Thank you in advance, 

0 Helpful

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee
In response to f.djoubar1

‎03-01-2016 02:57 AM

Hi Jesus,

Yes we are facing a lot of issues on this code.

Version 9.2(4.7) is expected to be released in a matter of days, so if You wish you can wait till then and upgrade to that code.

If not then you can downgrade to 9.1.7.4 code which has the fix for the bug and is a stable code.

Regards,

Aditya

0 Helpful

Go to solution
f.djoubar1
Level 1
Level 1
In response to Aditya Ganjoo

‎03-01-2016 02:59 AM

Thank you for your quick answer Aditya.

Do you know when will be available this version 9.2.4.7? 

0 Helpful

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee
In response to f.djoubar1

‎03-01-2016 06:22 AM

Hi Jesus,

ASA 9.2(4.7) will never be posted, it was superseded by 9.2(4.8) which is
already on CCO.

But since you are using ASA 5520 you would be interetsed in seeing this:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa92/release/notes/asarn92.html#pgfId-773511

I think you should try using 9.1.7.4.

Regards,

Aditya

Please rate helpful posts.

0 Helpful

Go to solution
f.djoubar1
Level 1
Level 1
In response to Aditya Ganjoo

‎03-01-2016 06:39 AM

Thank you Aditya. We will try the 9.1.7.4. Could you please provide us a link? 

0 Helpful

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee
In response to f.djoubar1

‎03-01-2016 07:44 AM

Hi Jesus,

Here is the link:

https://software.cisco.com/download/release.html?mdfid=279916878&flowid=4374&softwareid=280775065&release=8.2.5%20Interim&relind=AVAILABLE&rellifecycle=&reltype=latest

Please browse to All releases and under interim you would find 9.1.7.4 image.

Regards,

Aditya

Please rate helpful posts.

0 Helpful

Go to solution
f.djoubar1
Level 1
Level 1
In response to Aditya Ganjoo

‎03-01-2016 09:05 AM

Thank you very much. 

0 Helpful

Go to solution
Aditya Ganjoo
Cisco Employee
Cisco Employee
In response to f.djoubar1

‎03-01-2016 09:30 AM

Hi Jesus,

Happy to help :)

Regards,

Aditya

Please rate helpful posts.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents