Cisco Firepower System Software CVE-2017-3887 Denial of Service Vulnerability

Cisco Firepower System Software is prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to restart the affected process, denying service to legitimate users.

This issue is being tracked by Cisco Bug ID CSCvb62292.

Firepower System Software 6.0.1, 6.1.0, and 6.2.0 are vulnerable.

Information

Bugtraq ID: 97453
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2017-3887

Remote: Yes
Local: No
Published: Apr 05 2017 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Cisco Firepower System Software 6.2
Cisco Firepower System Software 6.1
Cisco Firepower System Software 6.0.1

Not Vulnerable: Cisco Firepower System Software 6.1.0.2

References:

• Cisco Homepage (Cisco )
  
• Cisco Firepower Detection Engine SSL DoS (Cisco)
  

Source: www.securityfocus.com