CVE-2018-0455
Cisco Firepower System Software Detection Engine Denial of Service Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the Server Message Block Version 2 (SMBv2) and Version 3 (SMBv3) protocol implementation for the Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the device to run low on system memory, possibly preventing the device from forwarding traffic. It is also possible that a manual reload of the device may be required to clear the condition. The vulnerability is due to incorrect SMB header validation. An attacker could exploit this vulnerability by sending a custom SMB file transfer through the targeted device. A successful exploit could cause the device to consume an excessive amount of system memory and prevent the SNORT process from forwarding network traffic. This vulnerability can be exploited using either IPv4 or IPv6 in combination with SMBv2 or SMBv3 network traffic.
Una vulnerabilidad en la implementación del protocolo Server Message Block Version 2 (SMBv2) y Version 3 (SMBv3) para Cisco Firepower System Software podría permitir que un atacante remoto no autenticado haga que el dispositivo se quede sin memoria en el sistema, lo que posiblemente impida que el dispositivo reenvíe el tráfico. También es posible que se requiera un reinicio manual del dispositivo para eliminar la condición. Esta vulnerabilidad se debe a una validación incorrecta de las cabeceras SMB. Un atacante podría explotar esta vulnerabilidad mediante el envío de una petición de transferencia de archivos SMB personalizada al dispositivo objetivo. Su explotación con éxito podría provocar que el dispositivo consuma una cantidad excesiva de memoria del sistema y evite que el proceso SNORT redirija tráfico de red. Esta vulnerabilidad se puede explotar usando IPV4 o IPv6 en combinación con tráfico de red SMBv2 o SMBv3.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-11-27 CVE Reserved
- 2018-10-05 CVE Published
- 2024-08-12 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-19: Data Processing Errors
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.0 Search vendor "Cisco" for product "Firepower System Software" and version "6.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.0.1 Search vendor "Cisco" for product "Firepower System Software" and version "6.0.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.1.0 Search vendor "Cisco" for product "Firepower System Software" and version "6.1.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.2.0 Search vendor "Cisco" for product "Firepower System Software" and version "6.2.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.2.0.2 Search vendor "Cisco" for product "Firepower System Software" and version "6.2.0.2" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.2.1 Search vendor "Cisco" for product "Firepower System Software" and version "6.2.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.2.2 Search vendor "Cisco" for product "Firepower System Software" and version "6.2.2" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower System Software Search vendor "Cisco" for product "Firepower System Software" | 6.2.3 Search vendor "Cisco" for product "Firepower System Software" and version "6.2.3" | - |
Affected
| ||||||