Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2016-1287

Published: 11/02/2016 Updated: 15/08/2023
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Adaptive Security Appliance Software

Vulnerability Summary

Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software prior to 8.4(7.30), 8.7 prior to 8.7(1.18), 9.0 prior to 9.0(4.38), 9.1 prior to 9.1(7), 9.2 prior to 9.2(4.5), 9.3 prior to 9.3(3.7), 9.4 prior to 9.4(2.4), and 9.5 prior to 9.5(2.2) on ASA 5500 devices, ASA 5500-X devices, ASA Services Module for Cisco Catalyst 6500 and Cisco 7600 devices, ASA 1000V devices, Adaptive Security Virtual Appliance (aka ASAv), Firepower 9300 ASA Security Module, and ISA 3000 devices allows remote malicious users to execute arbitrary code or cause a denial of service (device reload) via crafted UDP packets, aka Bug IDs CSCux29978 and CSCux42019.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco adaptive security appliance software 9.3.2

cisco adaptive security appliance software 9.1.1.4

cisco adaptive security appliance software 9.1.4

cisco adaptive security appliance software 8.6.1.12

cisco adaptive security appliance software 9.2.2.7

cisco adaptive security appliance software 9.1.5.21

cisco adaptive security appliance software 9.1.3

cisco adaptive security appliance software 9.1.2

cisco adaptive security appliance software 9.2.3

cisco adaptive security appliance software 9.3.1.1

cisco adaptive security appliance software 9.1.1

cisco adaptive security appliance software 9.2.2.8

cisco adaptive security appliance software 9.3.1

cisco adaptive security appliance software 9.1.2.8

cisco adaptive security appliance software 9.1.5.15

cisco adaptive security appliance software 9.1.5.10

cisco adaptive security appliance software 9.2.1

cisco adaptive security appliance software 9.3.2.2

cisco adaptive security appliance software 9.1.5

cisco adaptive security appliance software 9.2.2.4

cisco adaptive security appliance software 9.1.5.12

cisco adaptive security appliance software 9.1.3.2

cisco adaptive security appliance software 9.1.4.5

cisco adaptive security appliance software 9.2.2

cisco adaptive security appliance software 9.3.3.2

cisco adaptive security appliance software 9.1.6.6

cisco adaptive security appliance software 9.1.6.1

cisco adaptive security appliance software 9.2.4.2

cisco adaptive security appliance software 9.4.2.3

cisco adaptive security appliance software 9.4.1.2

cisco adaptive security appliance software 9.1.6

cisco adaptive security appliance software 9.3.3

cisco adaptive security appliance software 9.5.2

cisco adaptive security appliance software 9.1.6.10

cisco adaptive security appliance software 9.3.3.5

cisco adaptive security appliance software 9.2.4

cisco adaptive security appliance software 9.1.6.4

cisco adaptive security appliance software 9.2.3.3

cisco adaptive security appliance software 9.4.2

cisco adaptive security appliance software 9.5.1

cisco adaptive security appliance software 9.2.3.4

cisco adaptive security appliance software 9.3.3.1

cisco adaptive security appliance software 9.4.1.5

cisco adaptive security appliance software 9.4.1.3

cisco adaptive security appliance software 9.4.1

cisco adaptive security appliance software 9.1.6.8

cisco adaptive security appliance software 9.3.5

cisco adaptive security appliance software 9.4.0.115

cisco adaptive security appliance software 9.2.4.4

cisco adaptive security appliance software 9.4.1.1

cisco adaptive security appliance software 9.3.3.6

cisco adaptive security appliance software 7.2.4.30

cisco adaptive security appliance software 7.2.4.18

cisco adaptive security appliance software 7.2.3.12

cisco adaptive security appliance software 7.2.5.7

cisco adaptive security appliance software 7.2.1.24

cisco adaptive security appliance software 7.2.3.16

cisco adaptive security appliance software 7.2.1.13

cisco adaptive security appliance software 7.2.2.10

cisco adaptive security appliance software 7.2.4.33

cisco adaptive security appliance software 7.2.2.22

cisco adaptive security appliance software 7.2.5.12

cisco adaptive security appliance software 7.2.3

cisco adaptive security appliance software 7.2.5.16

cisco adaptive security appliance software 7.2.1.19

cisco adaptive security appliance software 7.2.4.27

cisco adaptive security appliance software 7.2.2.14

cisco adaptive security appliance software 7.2.2.18

cisco adaptive security appliance software 7.2.5.4

cisco adaptive security appliance software 7.2.3.1

cisco adaptive security appliance software 7.2.5.10

cisco adaptive security appliance software 7.2.1.9

cisco adaptive security appliance software 7.2.2.6

cisco adaptive security appliance software 7.2.4.9

cisco adaptive security appliance software 7.2.2

cisco adaptive security appliance software 7.2.2.34

cisco adaptive security appliance software 7.2.5.2

cisco adaptive security appliance software 7.2.4.25

cisco adaptive security appliance software 7.2.4.6

cisco adaptive security appliance software 7.2.2.19

cisco adaptive security appliance software 7.2.4

cisco adaptive security appliance software 7.2.5

cisco adaptive security appliance software 7.2.5.8

cisco adaptive security appliance software 7.2.1

cisco adaptive security appliance software 8.3.2.40

cisco adaptive security appliance software 8.3.1

cisco adaptive security appliance software 8.2.2

cisco adaptive security appliance software 8.3.1.1

cisco adaptive security appliance software 8.3.1.6

cisco adaptive security appliance software 8.2.5.40

cisco adaptive security appliance software 8.2.1

cisco adaptive security appliance software 8.2.2.12

cisco adaptive security appliance software 8.2.5.22

cisco adaptive security appliance software 8.2.5.33

cisco adaptive security appliance software 8.2.5.41

cisco adaptive security appliance software 8.2.4.4

cisco adaptive security appliance software 8.2.2.10

cisco adaptive security appliance software 8.3.2.37

cisco adaptive security appliance software 8.3.2.39

cisco adaptive security appliance software 8.2.5.26

cisco adaptive security appliance software 8.3.2

cisco adaptive security appliance software 8.3.2.33

cisco adaptive security appliance software 8.2.4

cisco adaptive security appliance software 8.2.5.57

cisco adaptive security appliance software 8.3.2.41

cisco adaptive security appliance software 8.2.4.1

cisco adaptive security appliance software 8.2.3

cisco adaptive security appliance software 8.3.1.4

cisco adaptive security appliance software 8.3.2.44

cisco adaptive security appliance software 8.3.2.34

cisco adaptive security appliance software 8.2.5.50

cisco adaptive security appliance software 8.2.5

cisco adaptive security appliance software 8.3.2.13

cisco adaptive security appliance software 8.2.5.13

cisco adaptive security appliance software 8.3.2.23

cisco adaptive security appliance software 8.2.5.52

cisco adaptive security appliance software 8.3.2.31

cisco adaptive security appliance software 8.2.5.55

cisco adaptive security appliance software 8.3.2.4

cisco adaptive security appliance software 8.2.2.17

cisco adaptive security appliance software 8.2.2.9

cisco adaptive security appliance software 8.2.2.16

cisco adaptive security appliance software 8.3.2.25

cisco adaptive security appliance software 8.2.1.11

cisco adaptive security appliance software 8.2.5.46

cisco adaptive security appliance software 8.2.5.48

cisco adaptive security appliance software 8.2.0.45

cisco adaptive security appliance software 8.4.3

cisco adaptive security appliance software 8.4.4.9

cisco adaptive security appliance software 8.4.4

cisco adaptive security appliance software 8.4.0

cisco adaptive security appliance software 8.4.1.3

cisco adaptive security appliance software 8.4.7.29

cisco adaptive security appliance software 8.4.1.11

cisco adaptive security appliance software 8.4.7.22

cisco adaptive security appliance software 8.4.2.1

cisco adaptive security appliance software 8.4.4.1

cisco adaptive security appliance software 8.4.7

cisco adaptive security appliance software 8.4.7.26

cisco adaptive security appliance software 8.4.5

cisco adaptive security appliance software 8.4.7.15

cisco adaptive security appliance software 8.4.4.5

cisco adaptive security appliance software 8.4.3.8

cisco adaptive security appliance software 8.4.7.23

cisco adaptive security appliance software 8.4.3.9

cisco adaptive security appliance software 8.4.6

cisco adaptive security appliance software 8.4.5.6

cisco adaptive security appliance software 8.4.7.3

cisco adaptive security appliance software 8.4.4.3

cisco adaptive security appliance software 8.4.2.8

cisco adaptive security appliance software 8.4.1

cisco adaptive security appliance software 8.4.7.28

cisco adaptive security appliance software 8.4.2

cisco adaptive security appliance software 8.6.1

cisco adaptive security appliance software 8.5.1.18

cisco adaptive security appliance software 8.5.1.14

cisco adaptive security appliance software 8.5.1.19

cisco adaptive security appliance software 8.6.1.13

cisco adaptive security appliance software 8.6.1.2

cisco adaptive security appliance software 8.5.1.7

cisco adaptive security appliance software 8.6.1.14

cisco adaptive security appliance software 8.5.1.24

cisco adaptive security appliance software 8.6.1.17

cisco adaptive security appliance software 8.5.1.21

cisco adaptive security appliance software 8.6.1.10

cisco adaptive security appliance software 8.5.1.1

cisco adaptive security appliance software 8.6.1.1

cisco adaptive security appliance software 8.5.1

cisco adaptive security appliance software 8.5.1.6

cisco adaptive security appliance software 8.6.1.5

cisco adaptive security appliance software 8.5.1.17

cisco adaptive security appliance software 8.7.1.4

cisco adaptive security appliance software 8.7.1.16

cisco adaptive security appliance software 9.0.4.37

cisco adaptive security appliance software 9.0.4

cisco adaptive security appliance software 9.0.4.5

cisco adaptive security appliance software 8.7.1.7

cisco adaptive security appliance software 9.0.4.7

cisco adaptive security appliance software 9.0.4.26

cisco adaptive security appliance software 9.0.3.8

cisco adaptive security appliance software 9.0.4.35

cisco adaptive security appliance software 8.7.1.17

cisco adaptive security appliance software 9.0.4.17

cisco adaptive security appliance software 8.7.1

cisco adaptive security appliance software 9.0.3.6

cisco adaptive security appliance software 8.7.1.8

cisco adaptive security appliance software 9.0.2.10

cisco adaptive security appliance software 9.0.1

cisco adaptive security appliance software 9.0.4.33

cisco adaptive security appliance software 9.0.4.24

cisco adaptive security appliance software 8.7.1.11

cisco adaptive security appliance software 9.0.2

cisco adaptive security appliance software 9.0.4.20

cisco adaptive security appliance software 9.0.4.29

cisco adaptive security appliance software 8.7.1.3

cisco adaptive security appliance software 8.7.1.1

cisco adaptive security appliance software 9.0.3

cisco adaptive security appliance software 8.7.1.13

cisco adaptive security appliance software 9.0.4.1

Exploits

Exploit DB: Cisco ASA Software 8.x/9.x - IKEv1 / IKEv2 Buffer Overflow
#!/usr/bin/env python27 import socket import sys import struct import string import random import time # Spawns a reverse cisco CLI cliShellcode = ( "\x60\xc7\x02\x90\x67\xb9\x09\x8b\x45\xf8\x8b\x40\x5c\x8b\x40\x04" "\x8b\x40\x08\x8b\x40\x04\x8b\x00\x85\xc0\x74\x3b\x50\x8b\x40\x08" "\x8b\x40\x04\x8d\x98\xd8\x00\x00\x00\x58\x81\x3b\ ...

Github Repositories

https://github.com/FuzzySecurity/Resource-List

GitHub Project Resource List

Resource-List A collection of useful GitHub projects loosely categorised I may end up adding non-GitHub projects + KB-style links for topics pwnd ODAT Oracle Database Attack Tool: githubcom/quentinhardy/odat clusterd framework, attacking JBoss, CF, WebLogic, Tomcat, Railo, Axis2, Glassfish: githubcom/hatRiot/clusterd JexBoss - Jboss verify and EXpl

https://github.com/jgajek/killasa

CVE-2016-1287 vulnerability test

killasa Vulnerability Test for CVE-2016-1287 (Cisco ASA invalid IKE fragment length) Negotiates IKEv2 SA with Cisco fragmentation enabled, then sends two IKE fragments, one of which has an invalid length of 1 octet

https://github.com/Snizz/exploits

Exploits

exploits CVE-2016-1287 Based on wwwexploit-dbcom/exploits/39823 I made some simple changes to gracefully handle a NAT situation; allowing the sploit to bind to a RFC1918 local IP

https://github.com/NetSPI/asa_tools

Verification tools for CVE-2016-1287

Cisco ASA RCE Verification This script can be used to verify the presence of CVE-2016-1287 It requires python3 and the python hexdump module to be installed $ sudo pip3 install hexdump It can be run as follows python3 cisco-asapy IPIPIPIP:port

https://github.com/0x90/vpn-arsenal

VPN pentest tools and scripts

VPN arsenal VPN pentest tools and scripts Links wwwtrustwavecom/Resources/SpiderLabs-Blog/Cracking-IKE-Mission-Improbable-(Part-1)/ wwwtrustwavecom/Resources/SpiderLabs-Blog/Cracking-IKE-Mission-Improbable-(Part-2)/ wwwtrustwavecom/Resources/SpiderLabs-Blog/Cracking-IKE-Mission-Improbable-(Part3)/ resourcesinfosecinstitutecom/vulnvpn/ http

https://github.com/marksowell/stars

A curated list of my GitHub stars!

Awesome Stars A curated list of my GitHub stars! Generated by starred Contents ai android angular api aspnet awesome awesome-list aws azure bash c chrome chrome-extension cli code-quality code-review cpp csharp css dart database docker documentation dotnet electron express firebase flutter framework git go golang graphql hacking hacktoberfest html http ios java javascript

https://github.com/marksowell/my-stars

A curated list of my GitHub stars by stargazed

Awesome Stars A curated list of my GitHub stars! Generated by stargazed 🏠 Contents Batchfile (3) C (27) C# (10) C++ (12) CSS (5) Dart (3) Dockerfile (2) Go (36) HCL (1) HTML (12) Java (23) JavaScript (39) Jinja (1) Jupyter Notebook (1) Kotlin (3) Lua (2) Makefile (2) Objective-C (7) Others (49) PHP (5) Pascal (1) Perl (3) PowerShell (21) Pug (1) Python (129) Rich Text

References

CWE-119http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160210-asa-ikehttp://packetstormsecurity.com/files/137100/Cisco-ASA-Software-IKEv1-IKEv2-Buffer-Overflow.htmlhttps://www.exploit-db.com/exploits/39823/https://www.kb.cert.org/vuls/id/327976http://www.securitytracker.com/id/1034997https://blog.exodusintel.com/2016/02/10/firewall-hacking/https://nvd.nist.govhttps://www.exploit-db.com/exploits/39823/https://github.com/FuzzySecurity/Resource-Listhttps://www.kb.cert.org/vuls/id/327976
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook