Vigil@nce - Cisco Firepower: unblocked malware via HTTP Header
May 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use a malicious HTTP header on Cisco Firepower, in
order to send a malware.
Impacted products: ASA, Cisco IPS.
Severity: 2/4.
Creation date: 31/03/2016.
DESCRIPTION OF THE VULNERABILITY
The Cisco Firepower product filters malware.
However, using an incorrect HTTP header, this filter can be
bypassed.
An attacker can therefore use a malicious HTTP header on Cisco
Firepower, in order to send a malware.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Cisco-Firepower-unblocked-malware-via-HTTP-Header-19278