Security Alert: Cisco ASA SNMP Remote Code Execution Vulnerability (CVE-2016-6366)


Hello,

Very recently, a new security vulnerability affecting Cisco ASA & Firepower was discovered. Below are the short details:


Background:
A vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vulnerability is due to a buffer overflow in the affected code area. An exploit could allow the attacker to execute arbitrary code and obtain full control of the system or to cause a reload of the affected system. The attacker must know the SNMP community string to exploit this vulnerability.

Multiple Cisco Security Vulnerabilities (ASA, CUCM, WLC, etc.)

Hello,


On April 20th, Cisco released multiple advisories detailing security vulnerabilities that affect a wide range of their products including ASA firewall, Unified Communications Manager (CUCM), WLC and more. The vulnerabilities, if exploited, would allow an attacker to launch a denial-of-service (DoS) attack on the device, possibly resulting in service disruption.

The vulnerabilities details and remedies are listed below.
It is advised that you check if any component of your network is affected, and if so, to patch it the soonest to prevent a potential breach.

Data Consult Acquires WorldNet

Lebanon, 15 March 2016: Data Consult, a leading Information & Communications Technology (ICT) company with a multi-regional footprint across the Middle East and Africa, has acquired Worldnet, one of the leading Workspace Virtualization and Cloud Solutions provider in the region, Worldnet has joined Data Consult group of companies.


Data Consult has been recently engaged in steering its strategy to tackle head on the global ICT sector shifting trends, thus providing innovative solutions aligned with the market evolving needs. The acquisition is a result of six months of discussions between Data Consult and Worldnet, whereby both companies have acknowledged the major synergies they would deliver across the Middle East and Africa. The strategic and financial advisory firm, Creed Capital, has been involved in forming a nexus between both entities, conducting the due diligence and bringing the negotiations to a successful conclusion.