Test ID:	1.3.6.1.4.1.25623.1.0.106232
Category:	CISCO
Title:	Cisco Firepower Management Center Malware Bypass Vulnerability
Summary:	A vulnerability in the malicious file detection and blocking features of;Cisco Firepower Management Center could allow an unauthenticated, remote attacker to bypass malware detection;mechanisms on an affected system.
Description:	Summary: A vulnerability in the malicious file detection and blocking features of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to bypass malware detection mechanisms on an affected system. Vulnerability Insight: The vulnerability is due to improper input validation of fields in HTTP headers. An attacker could exploit this vulnerability by crafting specific file content on a server or persuading a user to click a specific link. Vulnerability Impact: A successful exploit could allow the attacker to bypass malicious file detection or blocking policies that are configured for the system, which could allow malware to pass through the system undetected. Solution: Upgrade to version 6.1 CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6396 BugTraq ID: 92826 http://www.securityfocus.com/bid/92826 Cisco Security Advisory: 20160907 Cisco Firepower Management Center and FireSIGHT System Software Malware Bypass Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160907-fsss1 http://www.securitytracker.com/id/1036756
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.