First published: Wed Oct 21 2020(Updated: )
A vulnerability in the packet processing functionality of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to inefficient memory management. An attacker could exploit this vulnerability by sending a large number of TCP packets to a specific port on an affected device. A successful exploit could allow the attacker to exhaust system memory, which could cause the device to reload unexpectedly. No manual intervention is needed to recover the device after it has reloaded. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-tcp-dos-GDcZDqAf This advisory is part of the October 2020 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication, which includes 17 Cisco Security Advisories that describe 17 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: October 2020 Cisco ASA, FMC, and FTD Software Security Advisory Bundled Publication.
Credit: This vulnerability was found by Sanmith Prakash Cisco during internal security testing
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco FTD Software | >=6.3.0<=6.4.0<6.4.0.10 | 6.4.0.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Cisco Firepower Threat Defense Software vulnerability is cisco-sa-ftd-tcp-dos-GDcZDqAf.
The severity rating of cisco-sa-ftd-tcp-dos-GDcZDqAf is high with a rating of 8.6.
This vulnerability affects Cisco Firepower Threat Defense (FTD) Software versions 6.3.0 up to 6.4.0 (exclusive) and version 6.4.0.10 (inclusive).
An unauthenticated, remote attacker can exploit this vulnerability by sending a specially crafted packet to the affected device, causing a denial of service (DoS) condition.
Yes, a fix is available for cisco-sa-ftd-tcp-dos-GDcZDqAf in Cisco Firepower Threat Defense (FTD) Software version 6.4.0.10.