Matsco Solutions has been made aware of a vulnerability in Cisco devices, which includes their ASA 5500 series firewalls running software release 9.4, and above. The vulnerable products are:
The vulnerability relates to improper handling of SIP traffic. If exploited an attacker could reload a device or cause a high CPU utilisation condition, resulting in a denial of service.
At present, there is no software release to resolve the issue, however, a workaround is available to prevent the exploitation of the vulnerability. There is no downtime involved in applying the workaround.
For all Matsco Full Support and Maintenance clients, Matsco will implement the fix to the firewalls affected. For all other contracts, Matsco recommends any affected systems are updated as soon as convenient.
Please contact the Matsco Solutions team on the below if you would like any further information or would like to schedule a maintenance.
Beijing +86 400 120 2782
Hong Kong +852 8101 8418
London +44 (0)20 7821 4950
New York +1 866 446 9226
Singapore +65 6100 1090
Share this Post