DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 5th October 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,150
Thanked 182 Times in 149 Posts
Default Cisco patch day closes critical vulnerabilities

From http://h-online.com/-1354156

Quote:
Cisco has published ten security advisories as part of its bi-annual patch day. The advisories resolve a number of security vulnerabilities. The most serious vulnerability (CVSS 10) to have been addressed was in Catalyst switches running the company's iOS network operating system software. A bug in the Smart Install remote maintenance feature allowed remote attackers to execute arbitrary code on affected switches.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 6th October 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,150
Thanked 182 Times in 149 Posts
Default More patches from Cisco

From http://h-online.com/-1356415

Quote:
A week after its latest patch day, network equipment manufacturer Cisco has published three additional advisories that discuss and provide patches to close holes in various products. The manufacturer closed five holes in the Firewall Services Module (FWSM) in its 6500 Catalyst switches and 7600 router series. Attackers can use one of the holes to get around the TACACS+ authentication and obtain administrative access to devices. The other four holes can be used to conduct denial-of-service (DOS) attacks.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Wireshark updates close critical vulnerabilities J65nko News 0 2nd March 2011 05:32 PM
Opera 11.01 closes critical hole J65nko News 0 27th January 2011 04:14 PM
OpenOffice 3.2.1 closes two vulnerabilities J65nko News 0 7th June 2010 06:50 PM
Firefox 3.6.3 closes a critical hole J65nko News 0 2nd April 2010 05:52 PM
Cisco closes numerous holes in its security products J65nko News 0 18th February 2010 03:45 PM


All times are GMT. The time now is 07:09 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick