Super-Networking Blog

Tag: IOS

Cisco Vulnerabilities - Its a Big Day

by admin on May.23, 2007, under Networking, Security

There are two major Denial-of-Service (DoS) advisories out today.

Cisco IOS SSL Vulnerability

Affects:

  • Hyper Text Transfer Protocol over SSL (HTTPS). This is the most commonly used protocol that employs SSL.
  • Cisco Network Security (CNS) Agent with SSL support
  • Firewall Support of HTTPS Authentication Proxy
  • Cisco IOS Clientless SSL VPN (WebVPN) support

    • Cisco Crypto Library Vulnerability

    Affects:

  • Cisco IOS
  • Cisco IOS XR
  • Cisco PIX and ASA Security Appliances
  • Cisco Firewall Service Module (FWSM)
  • Cisco Unified CallManager
    • Technorati tags: , , ,
    Leave a Comment :, , , more...

    Cisco IOS FTP - Vulnerability

    by admin on May.10, 2007, under Networking, Security

    The Cisco IOS FTP Server feature contains multiple vulnerabilities that can result in a denial of service (DoS) condition, improper verification of user credentials, and the ability to retrieve or write any file from the device filesystem, including the device’s saved configuration. This configuration file may include passwords or other sensitive information.

    The IOS FTP Server is an optional service that is disabled by default. Devices that are not specifically configured to enable the IOS FTP Server service are unaffected by these vulnerabilities.

    This vulnerability does not apply to the IOS FTP Client feature.

    This advisory is posted at http://www.cisco.com/warp/public/707/cisco-sa-20070509-iosftp.shtml.

    Technorati tags: , ,
    Leave a Comment :, , more...

    Looking for something?

    Use the form below to search the site:

    Still not finding what you're looking for? Drop a comment on a post or contact us so we can take care of it!

    Your Ad Here

    Visit our friends!

    A few highly recommended friends...

    Archives

    All entries, chronologically...