nav search
Data Center Software Security Transformation DevOps Business Personal Tech Science Emergent Tech Bootnotes BOFH

Cisco patches NetBIOS vuln

By Richard Chirgwin, 20 Oct 2016

It's 2016, and Cisco's ASA software can be owned by a malicious NetBIOS packet.

A remote attacker can watch for the NetBIOS probes sent out by ASA's identity firewall feature, send back a crafted packet in response, and either crash the system or execute arbitrary code.

Appliances in the ASA 5500 series are affected, along with Catalyst 6500 and 7600 systems running ASA, the ASA 1000V cloud firewall, Firepower 9300 and 4100 systems running ASA, the ISA 3000 industrial firewall, and the ASA virtual appliance.

Cisco has released patches, and if users need a workaround, the advisory includes instructions to turn off NetBIOS probing. ®

The Register - Independent news and views for the tech community. Part of Situation Publishing