Matsco Security Advisory (01 Nov 2018)

In Cyber Security by Matsco Engineering Team

Matsco Solutions has been made aware of a vulnerability in Cisco devices, which includes their ASA 5500 series firewalls running software release 9.4, and above. 
The vulnerable products are:

  • 3000 Series Industrial Security Appliance (ISA)
  • ASA 5500-X Series Next-Generation Firewalls
  • ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
  • Adaptive Security Virtual Appliance (ASAv)
  • Firepower 2100 Series Security Appliance
  • Firepower 4100 Series Security Appliance
  • Firepower 9300 ASA Security Module
  • FTD Virtual (FTDv)

The vulnerability relates to improper handling of SIP traffic. If exploited an attacker could reload a device or cause a high CPU utilisation condition, resulting in a denial of service.

At present, there is no software release to resolve the issue, however, a workaround is available to prevent the exploitation of the vulnerability. There is no downtime involved in applying the workaround.

For all Matsco Full Support and Maintenance clients, Matsco will implement the fix to the firewalls affected. For all other contracts, Matsco recommends any affected systems are updated as soon as convenient.  

Please contact the Matsco Solutions team on the below if you would like any further information or would like to schedule a maintenance.

Beijing  +86 400 120 2782
Hong Kong  +852 8101 8418
London   +44 (0)20 7821 4950
New York  +1 866 446 9226
Singapore  +65 6100 1090

Share this Post