Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3200
Views
0
Helpful
2
Replies

ASA 5545 vulnerability (cisco-sa-20180129-asa1) version fix

riveg5996
Level 1
Level 1

‎12-03-2018 01:26 PM - edited ‎02-21-2020 08:32 AM

I have an ASA 5545 and we just upgraded to version 9.6(4)12 to fix a vulnerability PCI scan back in July that is done quarterly by a financial institution. The failed vulnerability reads: 

316187 - Cisco Adaptive Security Appliance Remote Code Execution
and Denial of Service Vulnerability (cisco-sa-20180129-asa1)
CVE-2018-0101.

From what I understand from Cisco documentation is ASA version 9.6(4)4 or later patches this denial of service vulnerability. 

Can anyone shed some light on this on whether this is true or not?asa
Thank You.

1 person had this problem
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎12-03-2018 02:04 PM

You are right as per below blog it was fixed, worth raise a TAC case, so fed this to development to fix.

 

https://blogs.cisco.com/security/cve-2018-0101

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

riveg5996
Level 1
Level 1
In response to balaji.bandi

‎12-04-2018 09:42 AM

Thanks for your reply. I did see this blog post which led me to your answer as well.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card