Under our observation

Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability

1 Comment

Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability (below url for reference)

severity level – critical

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180129-asa1

We heard denial of service vulnerability to UTM firewall device in frequent. It looks that there is no any strange or feeling surprise. However similar XML Exploit method not new, it announced in RSA conference on 2016. The concept idea shown as below:

MS XML Exploit

1. Double free memory vulnerability in MSXML3.dll

2. Invokable with IE

3. Validating DTDs (Document Type Defintion) in an XML document

4. Invalid forward ID references

5. Memory occupied by a forward reference object is freed twice

6. Present in older heap manager used

One thought on “Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability”

  1. I’m not certain the place you are getting your information, however great topic. I must spend a while learning more or understanding more. Thank you for magnificent info I was looking for this information for my mission.

Comments are closed.