Cisco Security Advisories

Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability

2009-06-27T02:00:00+00:00

A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS Software that can be exploited remotely to cause a reload of the Cisco IOS device

Cisco IOS Software Multiple Features Crafted UDP Packet Vulnerability

2009-06-27T02:00:00+00:00

Several features within Cisco IOS Software are affected by a crafted UDP packet vulnerability. If any of the affected features are enabled, a successful attack will result in a blocked input queue on the inbound interface. Only crafted UDP packets destined for the device could result in the interface being blocked, transit traffic will not block the interface.

Cisco IOS Software WebVPN and SSLVPN Vulnerabilities

2009-06-26T14:00:00+00:00

Cisco IOS software contains two vulnerabilities within the Cisco IOS WebVPN or Cisco IOS SSLVPN feature (SSLVPN) that can be remotely exploited without authentication to cause a denial of service condition.

Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability

2009-06-26T14:00:00+00:00

Cisco IOS? Software contains a vulnerability in multiple features that could allow an attacker to cause a denial of service (DoS) condition on the affected device. A sequence of specially crafted TCP packets can cause the vulnerable device to reload.

Cisco IOS Software Secure Copy Privilege Escalation Vulnerability

2009-06-26T14:00:00+00:00

The server side of the Secure Copy (SCP) implementation in Cisco IOS software contains a vulnerability that could allow authenticated users with an attached command-line interface (CLI) view to transfer files to and from a Cisco IOS device that is configured to be an SCP server, regardless of what users are authorized to do, per the CLI view configuration. This vulnerability could allow valid users to retrieve or write to any file on the device's file system, including the device's saved configuration and Cisco IOS image files, even if the CLI view attached to the user does not allow it. This configuration file may include passwords or other sensitive information.

Cisco IOS Software Multiple Features IP Sockets Vulnerability

2009-06-25T21:00:00+00:00

A vulnerability in the handling of IP sockets can cause devices to be vulnerable to a denial of service attack when any of several features of Cisco IOS? Software are enabled.

Cisco IOS cTCP Denial of Service Vulnerability

2009-06-25T21:00:00+00:00

A series of TCP packets may cause a denial of service (DoS) condition on Cisco IOS devices that are configured as Easy VPN servers with the Cisco Tunneling Control Protocol (cTCP) encapsulation feature. Cisco has released free software updates that address this vulnerability. No workarounds are available; however, the IPSec NAT traversal (NAT-T) feature can be used as an alternative.

Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities

2009-06-25T21:00:00+00:00

Devices that are running Cisco IOS Software and configured for Mobile IP Network Address Translation (NAT) Traversal feature or Mobile IPv6 are vulnerable to a denial of service (DoS) attack that may result in a blocked interface.

Vulnerabilities in Cisco Video Surveillance Products

2009-06-24T15:00:00+00:00

Cisco Physical Access Gateway Denial of Service Vulnerability

2009-06-24T15:00:00+00:00

IOS HTTP Server Command Injection Vulnerability

2009-06-19T19:00:00+00:00

A vulnerability exists in the IOS HTTP server in which HTML code inserted into dynamically generated output, such as the output from a show buffers command, will be passed to the browser requesting the page. This HTML code could be interpreted by the client browser and potentially execute malicious commands against the device or other possible cross-site scripting attacks. Successful exploitation of this vulnerability requires that a user browse a page containing dynamic content in which HTML commands have been injected.

CiscoWorks TFTP Directory Traversal Vulnerability

2009-05-20T14:00:00+00:00

Multiple Multicast Vulnerabilities in Cisco IOS Software

2009-04-16T20:00:00+00:00

Two crafted Protocol Independent Multicast (PIM) packet vulnerabilities exist in Cisco IOS software that may lead to a denial of service (DoS) condition. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.

Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities

2009-04-16T20:00:00+00:00

Multiple vulnerabilities exist in the Session Initiation Protocol (SIP) implementation in Cisco IOS that can be exploited remotely to trigger a memory leak or to cause a reload of the IOS device.

Cisco IOS MPLS Forwarding Infrastructure Denial of Service Vulnerability

2009-04-16T20:00:00+00:00

Cisco IOS Software Multi Protocol Label Switching (MPLS) Forwarding Infrastructure (MFI) is vulnerable to a Denial of Service (DoS) attack from specially crafted packets. Only the MFI is affected by this vulnerability. Older Label Forwarding Information Base (LFIB) implementation, which is replaced by MFI, is not affected.

Vulnerability in Cisco IOS While Processing SSL Packet

2009-04-16T20:00:00+00:00

A Cisco IOS device may crash while processing an SSL packet. This can happen during the termination of an SSL-based session. The offending packet is not malformed and is normally received as part of the packet exchange.

Cisco uBR10012 Series Devices SNMP Vulnerability

2009-04-16T20:00:00+00:00

Cisco uBR10012 series devices automatically enable Simple Network Management Protocol (SNMP) read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. Only Cisco uBR10012 series devices that are

Cisco IOS IPS Denial of Service Vulnerability

2009-04-16T20:00:00+00:00

The Cisco IOS Intrusion Prevention System (IPS) feature contains a vulnerability in the processing of certain IPS signatures that use the SERVICE.DNS engine. This vulnerability may cause a router to crash or hang, resulting in a denial of service condition.

Cisco IOS NAT Skinny Call Control Protocol Vulnerability

2009-04-16T20:00:00+00:00

A series of segmented Skinny Call Control Protocol (SCCP) messages may cause a Cisco IOS device that is configured with the Network Address Translation (NAT) SCCP Fragmentation Support feature to reload.

Cisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability

2009-04-16T20:00:00+00:00

Cisco 10000, uBR10012 and uBR7200 series devices use a User Datagram Protocol (UDP) based Inter-Process Communication (IPC) channel that is externally reachable. An attacker could exploit this vulnerability to cause a denial of service (DoS) condition on affected devices. No other platforms are affected.

Cisco IOS Software Firewall Application Inspection Control Vulnerability

2009-04-16T20:00:00+00:00

Cisco IOS software configured for IOS firewall Application Inspection Control (AIC) with a HTTP configured application-specific policy are vulnerable to a Denial of Service when processing a specific malformed HTTP transit packet. Successful exploitation of the vulnerability may result in a reload of the affected device.

Cisco IOS MPLS VPN May Leak Information

2009-04-16T20:00:00+00:00

Devices running Cisco IOS versions 12.0S, 12.2, 12.3 or 12.4 and configured for Multiprotocol Label Switching (MPLS) Virtual Private Networks (VPNs) or VPN Routing and Forwarding Lite (VRF Lite) and using Border Gateway Protocol (BGP) between Customer Edge (CE) and Provider Edge (PE) devices may permit information to propagate between VPNs.

Cisco IOS Software Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability

2009-04-16T20:00:00+00:00

A vulnerability exists in the Cisco IOS software implementation of Layer 2 Tunneling Protocol (L2TP), which affects limited Cisco IOS software releases.

Multiple Vulnerabilities in Cisco ASA Adaptive Security Appliance and Cisco PIX Security Appliances

2009-04-13T17:00:00+00:00

Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerabilities

2009-04-09T14:00:00+00:00

Cisco Unified Communications Manager, formerly Cisco Unified CallManager, contains two denial of service (DoS) vulnerabilities in the Session Initiation Protocol (SIP) service. An exploit of these vulnerabilities may cause an interruption in voice services.

Multiple Vulnerabilities in Cisco Wireless LAN Controllers

2009-03-11T18:00:00+00:00

Cisco Unified Communications Manager IP Phone Personal Address Book Synchronizer Privilege Escalation Vulnerability

2009-03-11T15:00:00+00:00

Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine

2009-03-09T20:00:00+00:00

The Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine Cisco ACE Module and Cisco ACE 4710 Application Control Engine contain multiple vulnerabilities that, if exploited, can result in any of the following impacts:

Cisco 7600 Series Router Session Border Controller Denial of Service Vulnerability

2009-03-04T15:10:00+00:00

A denial of service (DoS) vulnerability exists in the Cisco Session Border Controller (SBC) for the Cisco 7600 series routers. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available.

Cisco Unified MeetingPlace Web Conferencing Authentication Bypass Vulnerability

2009-02-25T15:10:00+00:00

Cisco Unified MeetingPlace Web Conferencing servers may contain an authentication bypass vulnerability that could allow an unauthenticated user to gain administrative access to the MeetingPlace application. Cisco has released free software updates that address this vulnerability.

Cisco ACE Application Control Engine Device Manager and Application Networking Manager Vulnerabilities

2009-02-25T15:10:00+00:00

Multiple vulnerabilities exist in the Cisco Application Networking Manager (ANM) and Cisco Application Control Engine (ACE) Device Manager applications. These vulnerabilities are independent of each other. Successful exploitation of these vulnerabilities may result in unauthorized system or host operating system access.

Cisco Unified Communications Manager CAPF Denial of Service Vulnerability

2009-01-21T15:00:00+00:00

Cisco Unified Communications Manager, formerly Cisco CallManager, contains a denial of service (DoS) vulnerability in the Certificate Authority Proxy Function (CAPF) service. Exploitation of this vulnerability could cause an interruption in voice services. The CAPF service is disabled by default.

Cisco Security Manager Vulnerability

2009-01-21T15:00:00+00:00

Cisco Security Manager contains a vulnerability when it is used with Cisco IPS Event Viewer (IEV) that results in open TCP ports on both the Cisco Security Manager server and IEV client. An unauthenticated, remote attacker could leverage this vulnerability to access the MySQL databases or IEV server.

Cisco ONS Platform Crafted Packet Vulnerability

2009-01-14T15:50:00+00:00

The Cisco ONS 15300 series Edge Optical Transport Platform, the Cisco ONS 15454 Optical Transport Platform, the Cisco ONS 15454 SDH Multiservice Platform, and the Cisco ONS 15600 Multiservice Switching Platform contains a vulnerability when processing TCP traffic streams that may result in a reload of the device control card.

IronPort Encryption Appliance / PostX and PXE Encryption Vulnerabilities

2009-01-14T15:50:00+00:00

IronPort PXE Encryption is an e-mail encryption solution that is designed to secure e-mail communications without the need for a Public Key Infrastructure (PKI) or special agents on receiving systems.

Cisco Global Site Selector Appliances DNS Vulnerability

2009-01-07T16:00:00+00:00

The Cisco Application Control Engine Global Site Selector (GSS) contains a vulnerability when processing specific Domain Name System (DNS) requests that may lead to a crash of the DNS service on the GSS.

Multiple Vulnerabilities in Cisco PIX and Cisco ASA.

2008-10-22T12:00:00+00:00

Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances.

Authentication Bypass in Cisco Unity

2008-10-08T16:00:00+00:00

A vulnerability exists in Cisco Unity that could allow an unauthenticated user to view or modify some of the configuration parameters of the Cisco Unity server. Cisco has released free software updates that address this vulnerability. A workaround that mitigates this vulnerability is available.

Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks

2008-09-09T21:30:00+00:00

Remote Access VPN and SIP Vulnerabilities in Cisco PIX and Cisco ASA

2008-09-03T14:20:00+00:00

Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances that may result in a reload of the device or disclosure of confidential information. This security advisory outlines details of the following vulnerabilities: