CVE-2016-1287 PoC — Cisco ASA Software IKEv1和IKEv2 缓冲区错误漏洞

Source

Associated Vulnerability

Title:Cisco ASA Software IKEv1和IKEv2 缓冲区错误漏洞 (CVE-2016-1287)
Description:Cisco ASA（Adaptive Security Appliances，自适应安全设备）Software是美国思科（Cisco）公司的一套防火墙和网络安全平台。该平台提供了对数据和网络资源的高度安全的访问等功能。 Cisco ASA Software的IKEv1和IKEv2实现过程中存在缓冲区溢出漏洞。远程攻击者可借助特制的UDP数据包利用该漏洞执行任意代码或造成拒绝服务（设备重载）。以下产品及版本受到影响：Cisco ASA 5500，ASA 5500-X，ASA Services Module

Description

Verification tools for CVE-2016-1287

Readme

## Cisco ASA RCE Verification
This script can be used to verify the presence of CVE-2016-1287.

It requires python3 and the python hexdump module to be installed
```
$ sudo pip3 install hexdump
```

It can be run as follows

```
python3 cisco-asa.py IP.IP.IP.IP:port
```

File Snapshot


 [4.0K]  /data/pocs/9b2941ceab5108ae12eb96791d7349a681765227
├── [ 11K]  cisco_asa.py
└── [ 271]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!