CVE-2016-6366

ENISA EUVD: EUVD-2016-7289 ↗

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: March 5, 2026 1 article Published: 2016-08-18

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-23

90.78%

probability

This CVE has a 90.78% probability of being exploited in the next 30 days.

0% Top 99.6th percentile of all CVEs 100%

CVSS v3.1

Source: VulnerabilityLookup (CIRCL)

8.8

HIGH

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2 (legacy)

8.5

HIGH

Access Vector

Network

Access Complexity

Medium

Authentication

Single

Confidentiality

Complete

Integrity

Complete

Availability

Complete

AV:N/AC:M/Au:S/C:C/I:C/A:C

Description

VulnerabilityLookup (CNA)

Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute arbitrary code via crafted IPv4 SNMP packets, aka Bug ID CSCva92151 or EXTRABACON.

Affected Products

n/a

n/a

cisco

pix firewall software

cisco

adaptive security appliance software

cisco

asa 1000v cloud firewall software

n/a

n/a

n/a

Attack Intelligence

CWE-118 · Incorrect Access of Indexable Resource ('Range Error') CWE-119 · Buffer Overflow CWE-120 · Buffer Copy without Size Check CWE-664 · Improper Control of a Resource Through its Lifetime CWE-787 · Out-of-bounds Write

Google Project Zero

Discovered

Aug. 15, 2016

Patched

Aug. 17, 2016

Reported by

Shadow Brokers

Root Cause Analysis

???

Exploits & PoC

RiskSense-Ops/CVE-2016-6366

Public repository for improvements to the EXTRABACON exploit

163 2016-11-02

1 repo — triés par ⭐ Rechercher sur GitHub ↗

http://www.securityfocus.com/bid/92521

vdb-entry x_refsource_BID

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40258.zip

x_refsource_MISC

http://blogs.cisco.com/security/shadow-brokers

x_refsource_CONFIRM

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-snmp

vendor-advisory x_refsource_CISCO

http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-56516

x_refsource_CONFIRM

https://zerosum0x0.blogspot.com/2016/09/reverse-engineering-cisco-asa-for.html

x_refsource_MISC

Signal Intelligence

Confidenceⓘ

95%

EPSS 90.78%

CVSS v3.1 8.8

Mentions 1

CNA Information

CNA Assigner

cisco

Analyst Note

Auto-imported from Google Project Zero — confirmed zero-day by definition.

Threat Actors 2

apt_group 🇷🇺 RU

apt_group 🇩🇪 DE

Triage Info

Decided atMar 05, 2026

Published DateAug 18, 2016