CVE-2016-6439 (CNNVD-201610-562)
中文标题:
Cisco Firepower System Software 拒绝服务漏洞
英文标题:
A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Softwa...
漏洞描述
中文描述:
Cisco Firepower System Software是美国思科(Cisco)公司的一款下一代防火墙产品(NGFW)。 Cisco Firepower System Software的侦察引擎重组HTTP数据包存在拒绝服务漏洞,该漏洞源于Snort进程意外重启。远程攻击者可通过发送特制的HTTP分组数据流到目标系统的侦察引擎利用该漏洞造成拒绝服务。运行Cisco Firepower System软件5.4.1.5版本、6.0和6.0.0.1版本的以下产品受到影响:Cisco Adaptive Security Appliance 5500-X Series with FirePOWER Services,Advanced Malware Protection for Networks,7000 Series Appliances,Advanced Malware Protection for Networks, 8000 Series Appliances,Firepower 4100 Series Security Appliances,FirePOWER 7000 Series Appliances,FirePOWER 8000 Series Appliances,Firepower 9300 Series Security Appliances,FirePOWER Threat Defense for Integrated Services Routers,Sourcefire 3D System Appliances,Virtual Next-Generation Intrusion Prevention System for VMware。
英文描述:
A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Software before 6.0.1 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper handling of an HTTP packet stream. An attacker could exploit this vulnerability by sending a crafted HTTP packet stream to the detection engine on the targeted device. An exploit could allow the attacker to cause a DoS condition if the Snort process restarts and traffic inspection is bypassed or traffic is dropped.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| cisco | secure_firewall_management_center | 5.3.0 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.0:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.0.2 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.0.2:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.0.3 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.0.3:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.0.4 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.0.4:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.1 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.1:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.1.3 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.1.3:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.1.4 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.1.4:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.1.5 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.1.5:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.3.1.6 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.3.1.6:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.0 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.0:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.0.2 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.0.2:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1.1 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.1:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1.2 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.2:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1.3 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.3:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1.4 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.4:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1.5 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.5:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4.1.6 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.6:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 5.4_base | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:5.4_base:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 6.0.0 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 6.0.0.0 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0.0:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 6.0.0.1 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0.1:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 6.0.1 | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.1:*:*:*:*:*:*:*
|
| cisco | secure_firewall_management_center | 6.0_base | - | - |
cpe:2.3:a:cisco:secure_firewall_management_center:6.0_base:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
CVSS评分详情
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2016-6439 |
2025-11-11 15:19:10 | 2025-11-11 07:34:23 |
| NVD | nvd_CVE-2016-6439 |
2025-11-11 14:55:09 | 2025-11-11 07:43:03 |
| CNNVD | cnnvd_CNNVD-201610-562 |
2025-11-11 15:09:43 | 2025-11-11 07:52:45 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 资源管理错误
- cnnvd_id: 未提取 -> CNNVD-201610-562
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- severity: SeverityLevel.MEDIUM -> SeverityLevel.HIGH
- cvss_score: 未提取 -> 7.5
- cvss_vector: NOT_EXTRACTED -> CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- cvss_version: NOT_EXTRACTED -> 3.0
- affected_products_count: 0 -> 24
- data_sources: ['cve'] -> ['cve', 'nvd']