漏洞类别:Cisco
漏洞等级: 
漏洞信息
A vulnerability in the Internet Key Exchange Version 1 (IKEv1) XAUTH code of Cisco ASA Software could allow an authenticated, remote attacker to cause a reload of an affected system.
The vulnerability is due to insufficient validation of the IKEv1 XAUTH parameters passed during an IKEv1 negotiation.
漏洞危害
An attacker could exploit this vulnerability by sending crafted parameters.
解决方案
Refer to Cisco ASA advisory cisco-sa-20170419-asa-xauth for updates and patch information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论