Cisco, Fortinet Patches for NSA Purported Hack


Cisco (ASA/PIX) and Fortinet (Fortigate) have released firmware security patches to address exploits made public this week due to the purported NSA hack.

Cisco rates this newly discovered vulnerability as high because it could allow execution of remote code on affected devices, which would allow full control. The devices affected are listed below:

  • Cisco ASA 5500 Series Adaptive Security Appliances
  • Cisco ASA 5500-X Series Next-Generation Firewalls
  • Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
  • Cisco ASA 1000V Cloud Firewall
  • Cisco Adaptive Security Virtual Appliance (ASAv)
  • Cisco Firepower 9300 ASA Security Module
  • Cisco PIX Firewalls
  • Cisco Firewall Services Module (FWSM)

For more information, please see Cisco's security advisory.

Fortinet rates this newly discovered vulnerability as high. They issued a security advisory for the exploit known as the Cookie Parser Buffer Overflow Vulnerability. Exploitation of this vulnerability could allow remote administrative access. The versions affected are listed below:

  • FOS 4.3.8 and below
  • FOS 4.2.12 and below
  • FOS 4.1.10 and below

For more information, please see Fortinet's security advisory.