Nowcomm Customer Advisory Alert: Cisco ASA Remote Code Execution and Denial of Service

Nowcomm Customer Advisory Number: NCA30012018:1415 

Nowcomm is monitoring a Cisco Security Advisory that has been issued for some Cisco ASA, Cisco Firepower Security Appliances and for Cisco Firepower Threat Defence software. Please read this post for more information should you be potentially affected. 

As of the date and time of posting this Nowcomm Customer Advisory:

Note: Advisory posted from Cisco includes statement a remote attacker could “obtain full control of the system by executing arbitrary code” 


A critical security advisory  notice has been announced by Cisco regarding a vulnerability in the XML Parser of Cisco Adaptive Security Appliance software. Devices with the vulnerability could allow a remote attacker to stop the processing of incoming VPN authentication requests, reload the affected device or even obtain full control of the system by executing arbitrary code.  

To be vulnerable Cisco state the ASA must have Secure Socket Layer (SSL) services or IKEv2 Remote Access VPN services enabled on an interface.

Vulnerable Products

This vulnerability affects Cisco ASA Software that is running on the following Cisco products:

3000 Series Industrial Security Appliance (ISA)

ASA 5500 Series Adaptive Security Appliances

ASA 5500-X Series Next-Generation Firewalls

ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers

ASA 1000V Cloud Firewall

Adaptive Security Virtual Appliance (ASAv)

Firepower 2100 Series Security Appliance

Firepower 4110 Security Appliance

Firepower 4120 Security Appliance

Firepower 4140 Security Appliance

Firepower 4150 Security Appliance

Firepower 9300 ASA Security Module

Firepower Threat Defense Software (FTD)

FTD Virtual (FTDv)

The full Cisco Security Advisory relating to this issue can be found here:

Organisations that are concerned or potentially affected by this Cisco announcement may benefit from reading the full Cisco advisory.

Organisations wishing to understand or consider the possibility to deploy or implement Cisco ASA and Cisco Firepower hardening techniques can contact Nowcomm to explore purchasing expert engineering and consulting resource. Please have your Cisco product models and device serial numbers available if known.

Existing Nowcomm support or managed services customers should naturally contact your Nowcomm Services team to discuss your existing environment and understand the suggested recommendations and any remedial work Nowcomm maybe performing.

Nowcomm technical support services can be contacted on + 44 1332 821 128

For general enquiries please call Nowcomm on 01332 821 100 or email [email protected] .

Related posts

Active hacker groups on our radar: DarkSide

Nowcomm announces another behind the scenes event with Williams Racing virtual guided tour.

Nowcomm partners with M-Sport for an exclusive online behind the scenes event.

Lockdown: Considerations For Permanent Remote Working Policies

EdTech: Hybrid learning and the role of technology at UK universities

Remote working tips for students and workers: How to pick the right home working applications for the right purpose

Press Release – Nowcomm is worth its weight in Gold!

Today is International Men’s Day

What happened in Las Vegas?

Nowcomm re-certifies as Cisco Gold Partner for the 3rd year!

International Women’s Day – Meet The Women Of Nowcomm

Nowcomm shortlisted for two awards at the National Technology Awards 2018

Nowcomm Customer Advisory Alert: Cisco ASA Remote Code Execution and Denial of Service

Nowcomm’s Scott Bradley: From Technical Engineer to Solutions Builder

Nowcomm shortlisted for prestigious CRN Award

Nowcomm to help Middlesbrough Council save £350,000 in new 5-year contract

Nowcomm and Crown Resorts strike it lucky with 3-year UK casino deal.

Nowcomm Wins SMB Digital Transformation Award At The Comms Business Awards 2017

Announcement: June 2017 Webinar Calendar

Nowcomm shortlisted for 2017 Digital Transformation Award