Buffer overflow

Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. The size was off by one making it possible to read past the end of the array with an ether type of 0xFFFF. Increasing the array size solves this problem...

CVE-2017-6657

Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. That makes it possible to craft packets that have IP protocol numbers in the ether type field which...

CVE-2017-6658

CVE-2017-6658 affects Cisco Sourcefire Snort 3.0 prior to build 233, with a buffer overread in the decoder array caused by an off-by-one sizing error. An ether type of 0xFFFF could lead to reading past the end of the array, with the recommended mitigation being to increase the decoder array size ...

CVE-2017-6657

Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. That makes it possible to craft packets that have IP protocol numbers in the ether type field which...

CVE-2017-6658

Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. The size was off by one making it possible to read past the end of the array with an ether type of 0xFFFF. Increasing the array size solves this problem...

CVE-2017-6657

Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation, allowing crafted packets with IP protocol numbers in the ether type field to confuse the Snort++ decoder. Affected decoders include gre, llc, trans_bridge, ciscometadata, linux_sll, and token_ring; the fix adds a check ...

CVE-2016-6368

CVE-2016-6368 describes a denial-of-service in Cisco Firepower System Software through improper input validation in the detection engine’s Pragmatic General Multicast (PGM) protocol decoding. A crafted PGM packet can cause the Snort process to restart, potentially bypassing traffic inspection or ...

CVE-2016-9209

A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance ASA 5500-X Series with FirePOWER...

Code injection

A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance ASA 5500-X Series with FirePOWER...

CVE-2016-9209

CVE-2016-9209 is a Cisco FirePOWER vulnerability where TCP processing mishandles out-of-order segments before HTTP inspection, causing GZIP decompression to bypass and malware-blocking checks. Affected: ASA 5500-X with FirePOWER, AMP for Networks 7000/8000, FirePOWER 7000/8000 series, FirePOWER T...

Cisco FireSIGHT Management Center Detection

This script performs SSH based detection of Cisco FireSIGHT Management Center SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

CVE-2015-6307

Cisco FirePOWER (formerly Sourcefire) 7000 and 8000 series devices running software 5.4.0.1 are affected by CVE-2015-6307. The vulnerability allows an unauthenticated, adjacent attacker to cause the inspection engine to stall or stop processing packets by sending crafted packets, potentially resu...

Cisco Sourcefire User Agent 2.2 - Insecure File Permissions

Exploit for windows platform in category local exploits / Cisco Sourcefire User Agent Insecure File Permissions Vulnerability Vendor: Cisco Product webpage: http://www.cisco.com Affected versions: Cisco SF User Agent 2.2 Fixed versions: Cisco SF User Agent 2.2-25 Date: 08/09/2015 Credits: Glafkos...

Cisco Sourcefire User Agent 2.2 - Insecure File Permissions

Cisco Sourcefire User Agent 2.2 - Insecure File Permissions / Cisco Sourcefire User Agent Insecure File Permissions Vulnerability Vendor: Cisco Product webpage: http://www.cisco.com Affected versions: Cisco SF User Agent 2.2 Fixed versions: Cisco SF User Agent 2.2-25 Date: 08/09/2015 Credits:...

Cisco Sourcefire User Agent 2.2 - Insecure File Permissions

/ Cisco Sourcefire User Agent Insecure File Permissions Vulnerability Vendor: Cisco Product webpage: http://www.cisco.com Affected versions: Cisco SF User Agent 2.2 Fixed versions: Cisco SF User Agent 2.2-25 Date: 08/09/2015 Credits: Glafkos Charalambous CVE: Not assigned by Cisco BugId: CSCut448...

Cisco Acquires OpenDNS for $635 Million

Cisco continues to spend on security, today announcing its intent to acquire San Francisco-based OpenDNS for $635 million. OpenDNS’ domain name system and cloud-based security services bring threat data collected from those platforms to Cisco’s security offerings. “To build on Cisco’s advanced...

Cisco FireSIGHT Sourcefire 3D System Arbitrary File Upload Vulnerability

Centralized management console for Cisco FireSIGHT Sourcefire security solutions. An arbitrary file upload vulnerability exists in the Cisco FireSIGHT Sourcefire 3D System Lights-Out Management LOM feature, which could be exploited by remote attackers to upload arbitrary files to a target device...

CVE-2015-0739

The Lights-Out Management LOM implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller BMC file uploads via unspecified vectors, aka Bug ID CSCus87938...

CVE-2015-0739

Cisco FireSIGHT System Software 5.3.0 (Sourcefire 3D Sensor) LOM vulnerability allows remote authenticated users to perform arbitrary BMC file uploads via unspecified vectors; root cause is insufficient input validation in Lights-Out Management. Exploitation could lead to arbitrary code execution...

Cisco Sourcefire 3D System Lights-Out Management Arbitrary File Upload Vulnerability

A vulnerability in Lights-Out Management LOM functionality of the Sourcefire 3D System could allow an authenticated, remote attacker to upload arbitrary files to the baseboard management controller BMC on an affected device. The vulnerability is due to insufficient validation and sanitization of...