If you are using Cisco Firepower or Snort to protect your network assets, you are advised to update to the latest version.
The vulnerability (CVE-2016-1345) is caused by an error when handling URLs. A remote unauthenticated attacker can use specially crafted HTTP request to bypass malicious file detection and even block certain policies, configured on the system. If one or more policies specify a Block Files, Block Malware, or Detect Files action, the system is vulnerable.
Vulnerability is fixed in Firepower System Software versions 5.4.0.7, 5.4.1.6 and 6.0.1.
Snort also fixed this vulnerability in the latest release 2.9.8.2.
We encourage everyone to update!
More information is available in original security advisory: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160330-fp