Vulnerability-Lookup

CVE-2016-9209 (GCVE-0-2016-9209)

Vulnerability from cvelistv5 – Published: 2016-12-14 00:37 – Updated: 2024-08-06 02:42

Summary

Severity ?

No CVSS data available.

CWE

unspecified

Assigner

cisco

References

URL

	Vendor	Product	Version
	n/a	Cisco FirePOWER	Affected: Cisco FirePOWER

GHSA-W647-WMR2-37VX

Vulnerability from github – Published: 2022-05-17 03:21 – Updated: 2022-05-17 03:21

Details

Severity ?

4.3 (Medium)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-9209"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2016-12-14T00:59:00Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10.",
  "id": "GHSA-w647-wmr2-37vx",
  "modified": "2022-05-17T03:21:26Z",
  "published": "2022-05-17T03:21:26Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9209"
    },
    {
      "type": "WEB",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/94817"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2016-9209

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2016-9209

Aliases

CVE-2016-9209

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-9209",
    "description": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10.",
    "id": "GSD-2016-9209"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-9209"
      ],
      "details": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10.",
      "id": "GSD-2016-9209",
      "modified": "2023-12-13T01:21:21.931028Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2016-9209",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Cisco FirePOWER",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Cisco FirePOWER"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "unspecified"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr",
            "refsource": "CONFIRM",
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr"
          },
          {
            "name": "94817",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/94817"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:6.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:6.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:6.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-9209"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-254"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr"
            },
            {
              "name": "94817",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/94817"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2016-12-15T17:08Z",
      "publishedDate": "2016-12-14T00:59Z"
    }
  }
}

FKIE_CVE-2016-9209

Vulnerability from fkie_nvd - Published: 2016-12-14 00:59 - Updated: 2025-04-12 10:46

Severity ?

4.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Summary

References

URL	Tags
psirt@cisco.com	http://www.securityfocus.com/bid/94817	Third Party Advisory, VDB Entry
psirt@cisco.com	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/94817	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	firepower_services_for_adaptive_security_appliance	5.3.0
cisco	firepower_services_for_adaptive_security_appliance	5.4.0
cisco	firepower_services_for_adaptive_security_appliance	5.4.1
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.1
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.2
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.3
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.4
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.5
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.6
cisco	firepower_services_for_adaptive_security_appliance	5.4.1.7
cisco	firepower_services_for_adaptive_security_appliance	6.0.0
cisco	firepower_services_for_adaptive_security_appliance	6.0.1
cisco	firepower_services_for_adaptive_security_appliance	6.1.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "49FD3DEB-3303-4753-8921-0EB0FC112142",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E7AF550-AB59-4E93-9FEF-516254C9FADA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "659043E3-CA0D-4803-914B-CEB9789178D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1CB53D9-CDCD-4875-9D85-059EF84DAFA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C465B1B6-10D3-4F1B-A087-7FD81AC08383",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "48E2FB0B-9B2C-4A73-96DC-E6B09CB6AFCC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA15E3D7-259E-4290-B4B0-D7A861AC7E23",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC0629D0-180B-4B04-87E3-0DD3C7F920CB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B4695CD-72DD-4F13-8D62-A278C69F883E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:5.4.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D56B35F-EF8A-4022-9A45-900DC00CF562",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:6.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "989FA285-4355-4120-B76C-793679CABBEE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:6.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC1E3D09-A33C-4C6B-ABA6-C8F4D2B07E53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:firepower_services_for_adaptive_security_appliance:6.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC8B269C-DAB3-4CAF-87B4-2A2AD91944CE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en el procesamiento TCP en el sistema software Cisco FirePOWER podr\u00eda permitir a un atacante remoto no autenticado descargar archivos que normalmente deber\u00edan ser bloqueados. Productos Afectados: Los siguientes productos Cisco son vulnerables: Adaptive Security Appliance (ASA) 5500-X Series con FirePOWER Services, Advanced Malware Protection (AMP) para Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) para Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense para Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) para Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) para VMware. M\u00e1s Informaci\u00f3n: CSCvb20102. Lanzamientos Afectados Conocidos: 2.9.7.10."
    }
  ],
  "id": "CVE-2016-9209",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-12-14T00:59:30.803",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/94817"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/94817"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-254"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

VAR-201612-0371

Vulnerability from variot - Updated: 2025-04-13 23:33

A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10. Multiple Cisco Products are prone to a security-bypass vulnerability. Successful exploits may allow an attacker to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks. This issue is tracked by Cisco Bug ID CSCvb20102. Cisco Firepower System Software is a next-generation firewall product (NGFW) of Cisco (Cisco). TCP is one of the network transport protocols. Remote attackers can use specially crafted HTTP to exploit this vulnerability to trick users into downloading malicious files, bypassing the malicious file protection mechanism

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201612-0371",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.1.7"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.1.4"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.1"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.0"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.1.6"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.1.3"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "6.1.0"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.4.1.5"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "6.0.0"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "5.3.0"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "6.0.1"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.4.1.2"
      },
      {
        "model": "firepower services for adaptive security appliance",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.4.1.1"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.3.0"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.0"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.1"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.2"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.3"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.4"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.5"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.6"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.7"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.0.0"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.0.1"
      },
      {
        "model": "firepower services for asa",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.1.0"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.3.0"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.0"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.1"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.2"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.3"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.4"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.5"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.6"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "5.4.1.7"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.0.0"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.0.1"
      },
      {
        "model": "firepower threat defense software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "6.1.0"
      },
      {
        "model": "virtual next-generation intrusion prevention system",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "sourcefire 3d system appliances",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "next generation intrusion prevention system",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "firepower threat defense for integrated services routers",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "firepower system software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "firepower series appliances",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "80000"
      },
      {
        "model": "firepower series appliances",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "70000"
      },
      {
        "model": "advanced malware protection series appliances",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "80000"
      },
      {
        "model": "advanced malware protection series appliances",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "70000"
      },
      {
        "model": "adaptive security appliance series",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5500-x0"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "94817"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:cisco:firepower_services_software_for_asa",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:cisco:firepower_threat_defense_software",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The vendor reported this issue.",
    "sources": [
      {
        "db": "BID",
        "id": "94817"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2016-9209",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.6,
            "id": "CVE-2016-9209",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.6,
            "id": "VHN-98029",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "exploitabilityScore": 2.8,
            "id": "CVE-2016-9209",
            "impactScore": 1.4,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.8,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2016-9209",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2016-9209",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201612-219",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-98029",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10. Multiple Cisco Products are prone to a security-bypass vulnerability. \nSuccessful exploits may allow  an attacker to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks. \nThis issue is tracked by Cisco Bug ID CSCvb20102. Cisco Firepower System Software is a next-generation firewall product (NGFW) of Cisco (Cisco). TCP is one of the network transport protocols. Remote attackers can use specially crafted HTTP to exploit this vulnerability to trick users into downloading malicious files, bypassing the malicious file protection mechanism",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "BID",
        "id": "94817"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      }
    ],
    "trust": 1.98
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2016-9209",
        "trust": 2.8
      },
      {
        "db": "BID",
        "id": "94817",
        "trust": 1.4
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219",
        "trust": 0.7
      },
      {
        "db": "VULHUB",
        "id": "VHN-98029",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "db": "BID",
        "id": "94817"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "id": "VAR-201612-0371",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      }
    ],
    "trust": 0.66915015
  },
  "last_update_date": "2025-04-13T23:33:55.839000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20161207-fpwr",
        "trust": 0.8,
        "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr"
      },
      {
        "title": "Cisco Firepower System Software Security vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=66257"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-254",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.0,
        "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20161207-fpwr"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/bid/94817"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-9209"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-9209"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "db": "BID",
        "id": "94817"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "db": "BID",
        "id": "94817"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-12-14T00:00:00",
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "date": "2016-12-07T00:00:00",
        "db": "BID",
        "id": "94817"
      },
      {
        "date": "2016-12-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "date": "2016-12-09T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "date": "2016-12-14T00:59:30.803000",
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-12-15T00:00:00",
        "db": "VULHUB",
        "id": "VHN-98029"
      },
      {
        "date": "2016-12-20T01:08:00",
        "db": "BID",
        "id": "94817"
      },
      {
        "date": "2016-12-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      },
      {
        "date": "2016-12-12T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      },
      {
        "date": "2025-04-12T10:46:40.837000",
        "db": "NVD",
        "id": "CVE-2016-9209"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco FirePOWER System software  TCP Vulnerabilities in files that are normally blocked in the process of downloading",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-006317"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201612-219"
      }
    ],
    "trust": 0.6
  }
}

CNVD-2016-12545

Vulnerability from cnvd - Published: 2016-12-19

Title

Cisco FirePOWER Malware安全绕过漏洞

Description

Cisco FirePOWER是一款思科公司开发的下一代防火墙。 Cisco FirePOWER Malware TCP处理存在安全绕过漏洞，允许远程攻击者而利用漏洞绕过安全限制，下载文件。

Severity

中

Patch Name

Cisco FirePOWER Malware安全绕过漏洞的补丁

Patch Description

Cisco FirePOWER是一款思科公司开发的下一代防火墙。 Cisco FirePOWER Malware TCP处理存在安全绕过漏洞，允许远程攻击者而利用漏洞绕过安全限制，下载文件。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全补丁以修复该漏洞： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr

Impacted products

Name
['Cisco firepower_services_for_adaptive_security_appliance 5.3.0', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.0', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.1', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.2', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.3', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.4', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.5', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.6', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.7', 'Cisco firepower_services_for_adaptive_security_appliance 6.0.0', 'Cisco firepower_services_for_adaptive_security_appliance 6.0.1', 'Cisco firepower_services_for_adaptive_security_appliance 6.1.0']

Name

['Cisco firepower_services_for_adaptive_security_appliance 5.3.0', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.0', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.1', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.2', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.3', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.4', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.5', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.6', 'Cisco firepower_services_for_adaptive_security_appliance 5.4.1.7', 'Cisco firepower_services_for_adaptive_security_appliance 6.0.0', 'Cisco firepower_services_for_adaptive_security_appliance 6.0.1', 'Cisco firepower_services_for_adaptive_security_appliance 6.1.0']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "94817"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-9209"
    }
  },
  "description": "Cisco FirePOWER\u662f\u4e00\u6b3e\u601d\u79d1\u516c\u53f8\u5f00\u53d1\u7684\u4e0b\u4e00\u4ee3\u9632\u706b\u5899\u3002\r\n\r\nCisco FirePOWER Malware TCP\u5904\u7406\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u800c\u5229\u7528\u6f0f\u6d1e\u7ed5\u8fc7\u5b89\u5168\u9650\u5236\uff0c\u4e0b\u8f7d\u6587\u4ef6\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-12545",
  "openTime": "2016-12-19",
  "patchDescription": "Cisco FirePOWER\u662f\u4e00\u6b3e\u601d\u79d1\u516c\u53f8\u5f00\u53d1\u7684\u4e0b\u4e00\u4ee3\u9632\u706b\u5899\u3002\r\n\r\nCisco FirePOWER Malware TCP\u5904\u7406\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u800c\u5229\u7528\u6f0f\u6d1e\u7ed5\u8fc7\u5b89\u5168\u9650\u5236\uff0c\u4e0b\u8f7d\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco FirePOWER Malware\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco firepower_services_for_adaptive_security_appliance 5.3.0",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.0",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.1",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.2",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.3",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.4",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.5",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.6",
      "Cisco firepower_services_for_adaptive_security_appliance 5.4.1.7",
      "Cisco firepower_services_for_adaptive_security_appliance 6.0.0",
      "Cisco firepower_services_for_adaptive_security_appliance 6.0.1",
      "Cisco firepower_services_for_adaptive_security_appliance 6.1.0"
    ]
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-fpwr",
  "serverity": "\u4e2d",
  "submitTime": "2016-12-13",
  "title": "Cisco FirePOWER Malware\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-9209 (GCVE-0-2016-9209)

GHSA-W647-WMR2-37VX

GSD-2016-9209

FKIE_CVE-2016-9209

VAR-201612-0371

CNVD-2016-12545

Tags

Sightings

Nomenclature