Exploit Available For Cisco IKEv1 and IKEv2 Buffer Overflow Vulnerability
An exploit has been made publicly available for CVE-2016-1287. A patch for the vulnerability, and quite a bit of detail about the vulnerability, was released in February [1]. We recommend you expedite patching this problem if you haven't already done so.
[1] https://blog.exodusintel.com/2016/02/10/firewall-hacking/
Keywords:
3 comment(s)
My next class:
Application Security: Securing Web Apps, APIs, and Microservices | Washington | Dec 13th - Dec 18th 2024 |
×
Diary Archives
Comments
Anonymous
May 19th 2016
8 years ago
We saw 2 boxes reboot within 24 hours of the Feb release of the info (half an hour apart), just an hour or so before the planned emergency patch. So at least probes were in-the-wild within hours.
All configuration was re-applied after the firmware upgrade, as we did not trust the existing config.
Anonymous
May 20th 2016
8 years ago
http://pass4surekey.com/exam/200-125.html
Anonymous
Feb 8th 2017
7 years ago