Cisco FireSIGHT System Software 5.4.0 through 6.0.1 and ASA with FirePOWER Services 5.4.0 through 6.0.0.1 allow remote attackers to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726.
http://www.securitytracker.com/id/1035439
http://www.securitytracker.com/id/1035438
http://www.securitytracker.com/id/1035437
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160330-fp