Cisco disclosed the existence of the CVE-2016-6399 flaw that can be exploited by remote unauthenticated attackers to trigger DoS conditions in some of Application Control Engine (ACE) products. The root cause of the security issue is the insufficient input validation checks in SSL/TLS code. Cisco has promised to release software updates that address the issue. The products affected by the flaw reached the end of life in July 2013, but CISCO is still offering support for them until January 2019.”]
Source: https://securityaffairs.co/wordpress/51147/security/cisco-cve-2016-6399-flaw.html