CVE-2016-6424
medium
CVSS v3
6.5
CVSS v2
6.1
VIR risk
6.5
Description
The DHCP Relay implementation in Cisco Adaptive Security Appliance (ASA) Software 8.4.7.29 and 9.1.7.4 allows remote attackers to cause a denial of service (interface wedge) via a crafted rate of DHCP packet transmission, aka Bug ID CSCuy66942.
Predictions
Exploit likelihood
65%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: psirt@cisco.com — http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-asa-dhcp
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-asa-dhcp
- http://www.securityfocus.com/bid/93408
- http://www.securitytracker.com/id/1036961
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-asa-dhcp
- http://www.securityfocus.com/bid/93408
- http://www.securitytracker.com/id/1036961
CWEs
CWE-399
Verify integrity in audit chain (admin only). AS-IS.