Vulnerability Details CVE-2016-6396
Cisco Firepower Management Center before 6.1 and FireSIGHT System Software before 6.1, when certain malware blocking options are enabled, allow remote attackers to bypass malware detection via crafted fields in HTTP headers, aka Bug ID CSCuz44482.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.6%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160907-fsss1
- http://www.securityfocus.com/bid/92826
- http://www.securitytracker.com/id/1036756
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160907-fsss1
- http://www.securityfocus.com/bid/92826
- http://www.securitytracker.com/id/1036756
Products affected by CVE-2016-6396
-
cpe:2.3:a:cisco:firesight_system_software:5.1.0
-
cpe:2.3:a:cisco:firesight_system_software:5.1.0.1
-
cpe:2.3:a:cisco:firesight_system_software:5.1.0.2
-
cpe:2.3:a:cisco:firesight_system_software:5.1.0.3
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.1
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.10
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.11
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.2
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.3
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.4
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.5
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.6
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.8
-
cpe:2.3:a:cisco:firesight_system_software:5.1.1.9
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.1
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.2
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.3
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.4
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.5
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.6
-
cpe:2.3:a:cisco:firesight_system_software:5.2.0.8
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.1
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.2
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.3
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.4
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.5
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.6
-
cpe:2.3:a:cisco:firesight_system_software:5.3.0.7
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1.1
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1.2
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1.3
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1.4
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1.5
-
cpe:2.3:a:cisco:firesight_system_software:5.3.1.7
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0.1
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0.2
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0.3
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0.4
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0.5
-
cpe:2.3:a:cisco:firesight_system_software:5.4.0.6
-
cpe:2.3:a:cisco:firesight_system_software:5.4.1
-
cpe:2.3:a:cisco:firesight_system_software:5.4.1.2
-
cpe:2.3:a:cisco:firesight_system_software:5.4.1.3
-
cpe:2.3:a:cisco:firesight_system_software:5.4.1.4
-
cpe:2.3:a:cisco:firesight_system_software:6.0.0
-
cpe:2.3:a:cisco:firesight_system_software:6.0.0.1
-
cpe:2.3:a:cisco:firesight_system_software:6.0.1