Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1323
Views
5
Helpful
7
Replies

CSCvg35618 - Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability - 10

danielpc89
Level 1
Level 1

‎02-02-2018 01:56 AM - edited ‎03-20-2019 09:52 PM

Which version is stable - 9.6.3.20 (Interim) or 9.6.4?

9.6.4 don`t have bug (SSL VPN) but 9.6.3.20 is sugessted by cisco.

Labels:
0 Helpful
7 Replies 7

Leo Laohoo
Hall of Fame
Hall of Fame

‎02-02-2018 02:28 AM

@danielpc89 wrote:

9.6.4 don`t have bug (SSL VPN) but 9.6.3 is sugessted by cisco.

But 9.6(3) is vulnerable.   The "gold star" has been there BEFORE the vulnerability was discovered.

0 Helpful

danielpc89
Level 1
Level 1
In response to Leo Laohoo

‎02-02-2018 02:35 AM

I know that 9.6.(3) is vulnerable but 9.6.3.20 is not vulnerable.

Upgrade to which version is prefer from 9.6.3.1? To 9.6.3.20 (Interim) or 9.6.4?

 

 

 

 

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame
In response to danielpc89

‎02-02-2018 02:36 AM

No one knows your network better than you.
Read the Release Notes and make a judgement call.
0 Helpful

lucasmarcel
Level 1
Level 1
In response to danielpc89

‎02-05-2018 09:38 AM

@danielpc89 - Did you get an actual answer? 9.3.6.20 was the 'first fixed release' listed by Cisco and the release notes do list CSCvg35618 as a resolved defect. I just received a proactive notification email from Cisco that lists 9.6.4.3 as the first fixed release. However, the release notes for this version are still blank.
0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame
In response to lucasmarcel

‎02-05-2018 11:00 AM

@lucasmarcel wrote:
However, the release notes for this version are still blank.

The people working in the Security area work at different "speed" compared to other areas, like documentation. 

0 Helpful

Tim Glen
Cisco Employee
Cisco Employee
In response to lucasmarcel

‎02-05-2018 04:38 PM

The slides from the Recon Conference are now public and I imagine exploit tools are being created right now.

 

The PSIRT was updated today. 9.6(3.20) is no longer considered Fixed.  For 9.6.x the First Fixed is now 9.6(4.3), see screenshot below.  Hope this helps,  Tim

 

Cisco_Systems.jpg

 

 

lucasmarcel
Level 1
Level 1
In response to Tim Glen

‎02-05-2018 05:07 PM

Thanks, I saw the update security notice after I posted and updated my firewalls to the recommended release.

0 Helpful
Customers Also Viewed These Support Documents