Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-110319
HistoryOct 02, 2019 - 12:00 a.m.

Multiple Cisco Products CVE-2019-12678 Denial of Service Vulnerability

2019-10-0200:00:00
Symantec Security Response
www.symantec.com
21

EPSS

0.002

Percentile

52.6%

JSON

Description

Multiple Cisco Products are prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected device, denying service to legitimate users This issue is being tracked by Cisco Bug ID CSCvp45882.

Technologies Affected

  • Cisco Adaptive Security Appliance (ASA) Software 9.0
  • Cisco Adaptive Security Appliance (ASA) Software 9.1
  • Cisco Adaptive Security Appliance (ASA) Software 9.10
  • Cisco Adaptive Security Appliance (ASA) Software 9.12
  • Cisco Adaptive Security Appliance (ASA) Software 9.2
  • Cisco Adaptive Security Appliance (ASA) Software 9.3
  • Cisco Adaptive Security Appliance (ASA) Software 9.4
  • Cisco Adaptive Security Appliance (ASA) Software 9.4.1
  • Cisco Adaptive Security Appliance (ASA) Software 9.5.1
  • Cisco Adaptive Security Appliance (ASA) Software 9.6
  • Cisco Adaptive Security Appliance (ASA) Software 9.7.1
  • Cisco Adaptive Security Appliance (ASA) Software 9.8
  • Cisco Adaptive Security Appliance (ASA) Software 9.9
  • Cisco Firepower Threat Defense Software (FTD) 6.1.0
  • Cisco Firepower Threat Defense Software (FTD) 6.2.0
  • Cisco Firepower Threat Defense Software (FTD) 6.2.1
  • Cisco Firepower Threat Defense Software (FTD) 6.2.2
  • Cisco Firepower Threat Defense Software (FTD) 6.2.3
  • Cisco Firepower Threat Defense Software (FTD) 6.3.0
  • Cisco Firepower Threat Defense Software (FTD) 6.4.0

Recommendations

Block external access at the network boundary, unless external parties require service.
If global access isn’t needed, filter access to the affected computer at the network boundary. Restricting access to only trusted computers and networks might greatly reduce the likelihood of successful exploits.

Block external access at the network boundary, unless external parties require service.
Filter access to the affected computer at the network boundary if global access isn’t needed. Restricting access to only trusted computers and networks might greatly reduce the likelihood of a successful exploit.

Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to monitor network traffic for signs of anomalous or suspicious activity including unexplained incoming and outgoing traffic. This may indicate exploit attempts or activity that results from successful exploits.

Updates are available. Please see the references or vendor advisory for more information.

References

Related

nessus 2
cisco 1
prion 1
cve 1
cvelist 1
nvd 1
nessus
nessus
Cisco Adaptive Security Appliance Software SIP Inspection DoS (cisco-sa-20191002-asa-ftd-sip-dos)
2019-10-25 00:00:00
Cisco Firepower Threat Defense Software SIP Inspection DoS (cisco-sa-20191002-asa-ftd-sip-dos)
2019-11-21 00:00:00
cisco
cisco
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SIP Inspection Denial of Service Vulnerability
2019-10-02 16:00:00
prion
prion
Integer overflow
2019-10-02 19:15:00
cve
cve
CVE-2019-12678
2019-10-02 19:15:12
cvelist
cvelist
CVE-2019-12678 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SIP Inspection Denial of Service Vulnerability
2019-10-02 19:06:40
nvd
nvd
CVE-2019-12678
2019-10-02 19:15:12

EPSS

0.002

Percentile

52.6%

JSON
Related for SMNTC-110319
nessus2cisco1prion1cve1cvelist1nvd1