Cisco patches NetBIOS vuln

It's 2016, and Cisco's ASA software can be owned by a malicious NetBIOS packet.

A remote attacker can watch for the NetBIOS probes sent out by ASA's identity firewall feature, send back a crafted packet in response, and either crash the system or execute arbitrary code.

Appliances in the ASA 5500 series are affected, along with Catalyst 6500 and 7600 systems running ASA, the ASA 1000V cloud firewall, Firepower 9300 and 4100 systems running ASA, the ISA 3000 industrial firewall, and the ASA virtual appliance.

Cisco has released patches, and if users need a workaround, the advisory includes instructions to turn off NetBIOS probing. ®

Biting the hand that feeds IT © 1998–2018