cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

192
Views
5
Helpful
5
Replies
Highlighted
Beginner

Can anyone provide me details and fix for Shell Shock vulnerability for Cisco ASA version 5?

We came to know frm our compliance team that we are running into shell shock vulnerabity therefore wanted to know the fix and document..

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Beginner

Hi James,

 

We do have a PSIRT filed for shell shock vulnerability, please refer details below:

 

CSCur00511    ACS evaluation for CVE-2014-6271 and CVE-2014-7169

https://tools.cisco.com/bugsearch/bug/CSCur00511/?reffering_site=dumpcr

 

Here is the fixed code information for individual versions:

 

Fixed Code:
Patch for DDTS CSCur00511 is ready and available on CCO.
The patch is included in all cumulative patches from version 5.4.0.46.7/5.5.0.46.6/5.6.0.22.1 and later. We recommend that you download the latest cumulative patches.

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.4 / 5.4.0.46.0

Patch filename: 5-4-0-46-.tar.gpg
Readme and installaion instructions: Acs-5-4-0-46--Readme.txt

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.5 / 5.5.0.46

Patch filename: 5-5-0-46-.tar.gpg
Readme and installaion instructions: Acs-5-5-0-46--Readme.txt

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.6 / 5.6.0.22

Patch filename: 5-6-0-22-.tar.gpg
Readme and installaion instructions: Acs-5-6-0-22--Readme.txt

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.3 / 5.3.0.40

Patch filename: 5-3-0-40-.tar.gpg
Readme and installaion instructions: Acs-53-Readme.txt

 

Regards,

 

Tushar Bangia

 

Please do rate the post if you find it helpful!!

 

View solution in original post

5 REPLIES 5
Highlighted
Beginner

Hi James,

 

We do have a PSIRT filed for shell shock vulnerability, please refer details below:

 

CSCur00511    ACS evaluation for CVE-2014-6271 and CVE-2014-7169

https://tools.cisco.com/bugsearch/bug/CSCur00511/?reffering_site=dumpcr

 

Here is the fixed code information for individual versions:

 

Fixed Code:
Patch for DDTS CSCur00511 is ready and available on CCO.
The patch is included in all cumulative patches from version 5.4.0.46.7/5.5.0.46.6/5.6.0.22.1 and later. We recommend that you download the latest cumulative patches.

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.4 / 5.4.0.46.0

Patch filename: 5-4-0-46-.tar.gpg
Readme and installaion instructions: Acs-5-4-0-46--Readme.txt

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.5 / 5.5.0.46

Patch filename: 5-5-0-46-.tar.gpg
Readme and installaion instructions: Acs-5-5-0-46--Readme.txt

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.6 / 5.6.0.22

Patch filename: 5-6-0-22-.tar.gpg
Readme and installaion instructions: Acs-5-6-0-22--Readme.txt

Download from: CCO / Support / Download Software http://www.cisco.com/cisco/pub/software/portal/select.html?i=!y
Select: Security / Identity Management / Cisco Secure Access Control System / Cisco Secure Access Control System 5.3 / 5.3.0.40

Patch filename: 5-3-0-40-.tar.gpg
Readme and installaion instructions: Acs-53-Readme.txt

 

Regards,

 

Tushar Bangia

 

Please do rate the post if you find it helpful!!

 

View solution in original post

Highlighted

Thanks for info man!!

 

This is helpful..

Highlighted

Please do share the link for patch!!

Highlighted

Here is the link for ACS 5.5!!

 

https://software.cisco.com/download/release.html?mdfid=285954966&flowid=73107&softwareid=282766937&release=5.5.0.46&relind=AVAILABLE&rellifecycle=&reltype=latest

Highlighted

Thx mayte!!

Content for Community-Ad