Actively Exploited High Impact DoS Vulnerability Found in Cisco ASA and FTD
#1
Quote:Cisco just disclosed an actively exploited denial of service (DoS) vulnerability in the Session Initiation Protocol (SIP) inspection engine of their Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Software.

The security issue could allow potential remote and unauthenticated attackers to "cause an affected device to reload or trigger high CPU, resulting in a denial of service (DoS) condition."

As detailed by Cisco in their advisory, the security issue lies in the way Session Initiation Protocol traffic is improperly handled, making it possible for an adversary to send maliciously crafted SIP requests designed to trigger this specific vulnerability at high rates across affected devices.
This DoS vulnerability (CVE-2018-15454) affects Cisco ASA Software Release 9.4 and later and Cisco FTD Software Release 6.0 and later according to Cisco, if SIP inspection is enabled.

Source: https://news.softpedia.com/news/high-imp...3546.shtml
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
uBOLite 2026.705.2152 (already available...
uBOLite 2026.705.2...harlan4096 — 10:23
Microsoft Warns Windows 11 Enterprise De...
Microsoft has issu...harlan4096 — 10:22
QOwnNotes
26.7.1 Added a ne...Kool — 05:26
NanaZip 6.5 Update (6.5.1767.0)
NanaZip 6.5 Update...harlan4096 — 19:15
Microsoft Edge 150 Adds Google Account S...
Microsoft has adde...harlan4096 — 10:26

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
avatar (47)dapedDow
avatar (49)TromPerl
avatar (46)RidgeDimb
avatar (37)ipumaqar
avatar (51)tanliorsPeri
avatar (43)lapedDow
avatar (49)rituabew
avatar (37)omyjul
avatar (41)papedDow
avatar (50)ArnoldFum
avatar (38)yfaza
avatar (49)Kevensi
avatar (48)ConradRoand
avatar (39)boineDon
avatar (51)spoofTum
avatar (50)WillieVot
avatar (40)Grompelbawn
avatar (41)vkseogaF
avatar (37)usogy
avatar (40)ywixazok
avatar (38)ixoqe
avatar (56)Step 1
avatar (36)pa.OpenTran

[-]
Online Staff
There are no staff members currently online.

>