Cisco ASA Adaptive Security Appliance is an IP router that acts as an application-aware firewall, network antivirus, intrusion prevention system, and virtual private network (VPN) server. Cisco has issued a fix to address CVE-2016-1287. The algorithm for re-assembling IKE payloads fragmented with the Cisco fragmentation protocol contains a bounds-checking flaw that allows a heap buffer to be overflowed with attacker-controlled data. Attackers can use this vulnerability to execute arbitrary code on affected devices.”]
Source: https://blog.exodusintel.com/2016/02/10/firewall-hacking/