John Marrett

John is Stack8's Director of Managed Services. John specializes in network and security, by developing innovative solutions for our clients and providing them with ongoing support.

Recent Posts

Cisco CVE-2016-1287 Network Vulnerability and our Mitigation Solution

Posted by John Marrett on Feb 11, 2016 11:37:47 AM


CISCO CVE-2016-1287 VULNERABILITY PROBLEM

Yesterday Cisco released an out of band patch for an ASA vulnerability (CVE-2016-1287) that permits remote code execution for any ASA device enabled for IKE / IPSec.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160210-asa-ike

You can validate if your configuration is affected using the following command:

show run crypto map | include interface

The Cisco advisory indicates that there is no way to mitigate this threat. There are a large number of  vulnerable ASA firmware versions that have not and will not receive fixes. Customers should be aware of the difficulty in migrating from 8.2 to newer versions because of the complete restructuring of NAT rules.

Read More

Topics: Security, Network & Security Insights, Cisco Release Notes and Product Reviews, Network

Don’t miss out. Expert advice straight to your inbox!

Insightful tips, troubleshooting and solutions for your everyday Unified Communications challenges from our team of experts. You can look forward to:

  • Weekly UC tips;
  • Cisco Unified Communications insights;
  • UCCX - Contact Center insights;
  • Network and Security insights;
  • Cisco Release notes and Product reviews.
Join us for free live demo