2 matches found
CVE-2017-3807
A vulnerability in Common Internet Filesystem CIFS code in the Clientless SSL VPN functionality of Cisco ASA Software, Major Releases 9.0-9.6, could allow an authenticated, remote attacker to cause a heap overflow. The vulnerability is due to insufficient validation of user supplied input. An...
PT-2017-2272 · Cisco · Cisco Asa
Name of the Vulnerable Software and Affected Versions: Cisco ASA Software versions 9.0 through 9.6 Description: The issue is caused by insufficient validation of user-supplied input and a heap overflow in the Common Internet Filesystem CIFS code of the Clientless SSL VPN functionality. This could...