Cisco has released a Security Advisory for it’s ASA Firewall Line of Products: CVE-2016-1287
Criticality: HIGH
Status: ACTIVELY USED
Workarounds: N/A
Recommended Action: Update as soon as possible (Cisco Software Download Link)
Affected Systems:
- Cisco ASA 5500 Series Adaptive Security Appliances
- Cisco ASA 5500-X Series Next-Generation Firewalls
- Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
- Cisco ASA 1000V Cloud Firewall
- Cisco Adaptive Security Virtual Appliance (ASAv)
- Cisco Firepower 9300 ASA Security Module
- Cisco ISA 3000 Industrial Security Appliance
Current Status:
According to this SANS report, the exploit is already being actively used.