Cisco AMP Threat Grid Unauthorized Clean IP Access Vulnerability

2016-07-06T16:00:00
ID CISCO-SA-20160706-TG
Type cisco
Reporter Cisco
Modified 2016-07-06T13:43:02

Description

A vulnerability in the virtual network stack of the Cisco AMP Threat Grid Appliance could allow an unauthenticated, remote attacker to access internal interfaces within the appliance.

The vulnerability is due to insufficient isolation between the sandbox and other internal components. An attacker could exploit this vulnerability by submitting a malware sample crafted to exploit this flaw. An exploit could allow the attacker to intercept interprocess calls and allow them to access, modify, and delete information from the system.

Cisco has released software updates that address this vulnerability. Workarounds that address this vulnerability are not available. This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-tg["http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160706-tg"]