Solved: Software Bug Fix

Simon.peters1 · ‎07-10-2019

Hello,

A really simple one I think.... we have a PCI scan done and a software Vulnerability was found and I found the bug but I can't seem to locate a fix for it.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160115-asa

The device is a ASA 5505 which is running 9.2(3) which is the latest I can find. How do I download an apply the fix?

Thanks!

Rob Ingram · ‎07-10-2019

Hi,
The known fixed releases for that bug that could work on the ASA 5505 are:-

9.2(4.11) or downgrade to 9.1(7), 9.1(6.100), newer ASA code is not supported on the ASA 5505.

HTH

View solution in original post

Rob Ingram · ‎07-10-2019

Hi,
The known fixed releases for that bug that could work on the ASA 5505 are:-

9.2(4.11) or downgrade to 9.1(7), 9.1(6.100), newer ASA code is not supported on the ASA 5505.

HTH

Simon.peters1 · ‎07-10-2019

Thanks, I did wonder if a downgrade would be required.

Will the latest for the 5505 not be fixed in a new resale then?

Rob Ingram · ‎07-10-2019

No. The ASA 5505 has long been EOL, so no upgrades available for a while. Recently the replacement for the 5505 the 5506 has also become EOL. The newer model is the Firepower 1000 series has just been released.

HTH

Simon.peters1 · ‎07-10-2019

Thanks!

So if I upload the older version to the flash and set to boot it will work ok?

Rob Ingram · ‎07-10-2019

Essentially yes, guide here if required.