Cisco Security Advisories http://www.cisco.com/en/US/products/products_security_advisories_listing.html Cisco Security Advisories (the 40 most recent advisories) en-us © 1992-2009 Cisco Systems, Inc. All rights reserved. news-at-cisco-rss@cisco.com news-at-cisco-rss@cisco.com Thu, 19 Nov 2009 05:25:06 PST Wed, 18 Nov 2009 12:00:00 PST Security Advisories News@Cisco RSS Script http://www.cisco.com/en/US/products/products_security_advisories_listing.html 60 News@Cisco http://newsroom.cisco.com/images/mobile_newsAtCisco.png http://www.cisco.com/en/US/products/products_security_advisories_listing.html 107 70 Search Cisco searchPhrase http://www.cisco.com/pcgi-bin/search/search.pl Transport Layer Security Renegotiation Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml An industry-wide vulnerability exists in the Transport Layer Security (TLS) protocol that could impact any Cisco product that uses any version of TLS and SSL. The vulnerability exists in how the protocol handles session renegotiation and exposes users to a potential man-in-the-middle attack.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Transport+Layer+Security+Renegotiation+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080b01d1d.shtml Wed, 18 Nov 2009 12:00:00 PST Cisco Global Site Selector Appliances DNS Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a57481.shtml The Cisco Application Control Engine Global Site Selector (GSS) contains a vulnerability when processing specific Domain Name System (DNS) requests that may lead to a crash of the DNS service on the GSS.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+Global+Site+Selector+Appliances+DNS+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a57481.shtml Thu, 12 Nov 2009 06:00:00 PST IOS HTTP Server Command Injection Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a008059e470.shtml A vulnerability exists in the IOS HTTP server in which HTML code inserted into dynamically generated output, such as the output from a show buffers command, will be passed to the browser requesting the page. This HTML code could be interpreted by the client browser and potentially execute malicious commands against the device or other possible cross-site scripting attacks. Successful exploitation of this vulnerability requires that a user browse a page containing dynamic content in which HTML commands have been injected.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=IOS+HTTP+Server+Command+Injection+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a008059e470.shtml Thu, 22 Oct 2009 11:00:00 PST Cisco IOS Software Internet Key Exchange Resource Exhaustion Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8117.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Internet+Key+Exchange+Resource+Exhaustion+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8117.shtml Mon, 19 Oct 2009 10:15:00 PST Cisco IOS Software Tunnels Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8115.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Tunnels+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8115.shtml Mon, 19 Oct 2009 10:15:00 PST Cisco IOS Software Authentication Proxy Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8132.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Authentication+Proxy+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8132.shtml Mon, 19 Oct 2009 10:15:00 PST Multiple Vulnerabilities in Wireless LAN Controllers http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml Multiple vulnerabilities exist in the Cisco Wireless LAN Controller (WLC) platforms. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Multiple+Vulnerabilities+in+Wireless+LAN+Controllers" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080adb3d7.shtml Thu, 15 Oct 2009 14:55:00 PST Multiple Vulnerabilities in Cisco Wireless LAN Controllers http://www.cisco.com/en/US/products/products_security_advisory09186a0080a6c1dd.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Multiple+Vulnerabilities+in+Cisco+Wireless+LAN+Controllers" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a6c1dd.shtml Thu, 15 Oct 2009 14:55:00 PST Cisco Unified Presence Denial of Service Vulnerabilities http://www.cisco.com/en/US/products/products_security_advisory09186a0080afc930.shtml Cisco Unified Presence contains two denial of service (DoS) vulnerabilities that may cause an interruption to presence services. These vulnerabilities were discovered internally by Cisco, and there are no workarounds.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+Unified+Presence+Denial+of+Service+Vulnerabilities" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080afc930.shtml Wed, 14 Oct 2009 06:50:00 PST Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8118.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+Unified+Communications+Manager+Session+Initiation+Protocol+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8118.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco IOS Software H.323 Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af811a.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+H.323+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af811a.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco IOS Software Crafted Encryption Packet Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af811c.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Crafted+Encryption+Packet+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af811c.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco IOS Software Zone-Based Policy Firewall Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8130.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Zone-Based+Policy+Firewall+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8130.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco IOS Software Network Time Protocol Packet Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8131.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Network+Time+Protocol+Packet+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8131.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco IOS Software Object-group Access Control List Bypass Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8119.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Object-group+Access+Control+List+Bypass+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8119.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco Unified Communications Manager Express Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8116.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+Unified+Communications+Manager+Express+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8116.shtml Wed, 23 Sep 2009 07:00:00 PST Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability (2) http://www.cisco.com/en/US/products/products_security_advisory09186a0080af811b.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Session+Initiation+Protocol+Denial+of+Service+Vulnerability+(2)" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af811b.shtml Wed, 23 Sep 2009 06:20:00 PST TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products http://www.cisco.com/en/US/products/products_security_advisory09186a0080af511d.shtml Multiple Cisco products are affected by denial of service (DoS) vulnerabilities that manipulate the state of Transmission Control Protocol (TCP) connections. By manipulating the state of a TCP connection, an attacker could force the TCP connection to remain in a long-lived state, possibly indefinitely. If enough TCP connections are forced into a long-lived or indefinite state, resources on a system under attack may be consumed, preventing new TCP connections from being accepted. In some cases, a system reboot may be necessary to recover normal system operation. To exploit these vulnerabilities, an attacker must be able to complete a TCP three-way handshake with a vulnerable system.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=TCP+State+Manipulation+Denial+of+Service+Vulnerabilities+in+Multiple+Cisco+Products" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af511d.shtml Wed, 16 Sep 2009 06:30:00 PST Unified Communications Manager Denial of Service Vulnerabilities http://www.cisco.com/en/US/products/products_security_advisory09186a0080af2d11.shtml Cisco Unified Communications Manager (formerly CallManager) contains multiple denial of service (DoS) vulnerabilities that if exploited could cause an interruption to voice services. The Session Initiation Protocol (SIP) and Skinny Client Control Protocol (SCCP) services are affected by these vulnerabilities.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Unified+Communications+Manager+Denial+of+Service+Vulnerabilities" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af2d11.shtml Wed, 26 Aug 2009 07:00:00 PST Cisco IOS XR Software Border Gateway Protocol Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af150f.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+XR+Software+Border+Gateway+Protocol+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af150f.shtml Sun, 23 Aug 2009 04:45:00 PST Firewall Services Module Crafted ICMP Message Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Firewall+Services+Module+Crafted+ICMP+Message+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080af0d1d.shtml Wed, 19 Aug 2009 07:00:00 PST Cisco IOS Software Border Gateway Protocol 4-Byte Autonomous System Number Vulnerabilities http://www.cisco.com/en/US/products/products_security_advisory09186a0080aea4c9.shtml Recent versions of Cisco IOS Software support RFC4893 ("BGP Support for Four-octet AS Number Space") and contain two remote denial of service (DoS) vulnerabilities when handling specific Border Gateway Protocol (BGP) updates.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Border+Gateway+Protocol+4-Byte+Autonomous+System+Number+Vulnerabilities" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080aea4c9.shtml Thu, 30 Jul 2009 05:00:00 PST Active Template Library (ATL) Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080ae9e43.shtml Certain Cisco products that use Microsoft Active Template Libraries (ATL) and headers may be vulnerable to remote code execution. In some instances, the vulnerability may be exploited against Microsoft Internet Explorer to perform kill bit bypass. In order to exploit this vulnerability, an attacker must convince a user to visit a malicious web site. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Active+Template+Library+(ATL)+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080ae9e43.shtml Tue, 28 Jul 2009 09:00:00 PST Vulnerabilities in Unified Contact Center Express Administration Pages http://www.cisco.com/en/US/products/products_security_advisory09186a0080ae04b2.shtml Cisco Unified Contact Center Express (Cisco Unified CCX) server contains both a directory traversal vulnerability and a script injection vulnerability in the administration pages of the Customer Response Solutions (CRS) and Cisco Unified IP Interactive Voice Response (Cisco Unified IP IVR) products. Exploitation of these vulnerabilities could result in a denial of service condition, information disclosure, or a privilege escalation attack. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Vulnerabilities+in+Unified+Contact+Center+Express+Administration+Pages" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080ae04b2.shtml Thu, 16 Jul 2009 10:00:00 PST Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a96c0c.shtml A vulnerability exists in the Session Initiation Protocol (SIP) implementation in Cisco IOS Software that can be exploited remotely to cause a reload of the Cisco IOS device<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Session+Initiation+Protocol+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a96c0c.shtml Fri, 26 Jun 2009 18:00:00 PST Cisco IOS Software Multiple Features Crafted UDP Packet Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a9648d.shtml Several features within Cisco IOS Software are affected by a crafted UDP packet vulnerability. If any of the affected features are enabled, a successful attack will result in a blocked input queue on the inbound interface. Only crafted UDP packets destined for the device could result in the interface being blocked, transit traffic will not block the interface. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Multiple+Features+Crafted+UDP+Packet+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a9648d.shtml Fri, 26 Jun 2009 18:00:00 PST Cisco IOS Software WebVPN and SSLVPN Vulnerabilities http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90424.shtml Cisco IOS software contains two vulnerabilities within the Cisco IOS WebVPN or Cisco IOS SSLVPN feature (SSLVPN) that can be remotely exploited without authentication to cause a denial of service condition. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+WebVPN+and+SSLVPN+Vulnerabilities" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90424.shtml Fri, 26 Jun 2009 06:00:00 PST Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904cb.shtml Cisco IOS? Software contains a vulnerability in multiple features that could allow an attacker to cause a denial of service (DoS) condition on the affected device. A sequence of specially crafted TCP packets can cause the vulnerable device to reload.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Multiple+Features+Crafted+TCP+Sequence+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904cb.shtml Fri, 26 Jun 2009 06:00:00 PST Cisco IOS Software Secure Copy Privilege Escalation Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c8.shtml The server side of the Secure Copy (SCP) implementation in Cisco IOS software contains a vulnerability that could allow authenticated users with an attached command-line interface (CLI) view to transfer files to and from a Cisco IOS device that is configured to be an SCP server, regardless of what users are authorized to do, per the CLI view configuration. This vulnerability could allow valid users to retrieve or write to any file on the device's file system, including the device's saved configuration and Cisco IOS image files, even if the CLI view attached to the user does not allow it. This configuration file may include passwords or other sensitive information. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Secure+Copy+Privilege+Escalation+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c8.shtml Fri, 26 Jun 2009 06:00:00 PST Cisco IOS Software Multiple Features IP Sockets Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a96478.shtml A vulnerability in the handling of IP sockets can cause devices to be vulnerable to a denial of service attack when any of several features of Cisco IOS? Software are enabled.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Multiple+Features+IP+Sockets+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a96478.shtml Thu, 25 Jun 2009 13:00:00 PST Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities http://www.cisco.com/en/US/products/products_security_advisory09186a0080a9042f.shtml Devices that are running Cisco IOS Software and configured for Mobile IP Network Address Translation (NAT) Traversal feature or Mobile IPv6 are vulnerable to a denial of service (DoS) attack that may result in a blocked interface. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+Software+Mobile+IP+and+Mobile+IPv6+Vulnerabilities" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a9042f.shtml Thu, 25 Jun 2009 13:00:00 PST Cisco IOS cTCP Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90459.shtml A series of TCP packets may cause a denial of service (DoS) condition on Cisco IOS devices that are configured as Easy VPN servers with the Cisco Tunneling Control Protocol (cTCP) encapsulation feature. Cisco has released free software updates that address this vulnerability. No workarounds are available; however, the IPSec NAT traversal (NAT-T) feature can be used as an alternative.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+cTCP+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90459.shtml Thu, 25 Jun 2009 13:00:00 PST Vulnerabilities in Cisco Video Surveillance Products http://www.cisco.com/en/US/products/products_security_advisory09186a0080ad0f8f.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Vulnerabilities+in+Cisco+Video+Surveillance+Products" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080ad0f8f.shtml Wed, 24 Jun 2009 07:00:00 PST Cisco Physical Access Gateway Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080ad0f8b.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+Physical+Access+Gateway+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080ad0f8b.shtml Wed, 24 Jun 2009 07:00:00 PST CiscoWorks TFTP Directory Traversal Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080ab7b56.shtml <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=CiscoWorks+TFTP+Directory+Traversal+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080ab7b56.shtml Wed, 20 May 2009 06:00:00 PST Multiple Multicast Vulnerabilities in Cisco IOS Software http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01491.shtml Two crafted Protocol Independent Multicast (PIM) packet vulnerabilities exist in Cisco IOS software that may lead to a denial of service (DoS) condition. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Multiple+Multicast+Vulnerabilities+in+Cisco+IOS+Software" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01491.shtml Thu, 16 Apr 2009 12:00:00 PST Multiple Cisco IOS Session Initiation Protocol Denial of Service Vulnerabilities http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml Multiple vulnerabilities exist in the Session Initiation Protocol (SIP) implementation in Cisco IOS that can be exploited remotely to trigger a memory leak or to cause a reload of the IOS device.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Multiple+Cisco+IOS+Session+Initiation+Protocol+Denial+of+Service+Vulnerabilities" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a01562.shtml Thu, 16 Apr 2009 12:00:00 PST Cisco IOS MPLS Forwarding Infrastructure Denial of Service Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014ac.shtml Cisco IOS Software Multi Protocol Label Switching (MPLS) Forwarding Infrastructure (MFI) is vulnerable to a Denial of Service (DoS) attack from specially crafted packets. Only the MFI is affected by this vulnerability. Older Label Forwarding Information Base (LFIB) implementation, which is replaced by MFI, is not affected.<img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+IOS+MPLS+Forwarding+Infrastructure+Denial+of+Service+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014ac.shtml Thu, 16 Apr 2009 12:00:00 PST Vulnerability in Cisco IOS While Processing SSL Packet http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0146c.shtml A Cisco IOS device may crash while processing an SSL packet. This can happen during the termination of an SSL-based session. The offending packet is not malformed and is normally received as part of the packet exchange. <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Vulnerability+in+Cisco+IOS+While+Processing+SSL+Packet" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a0146c.shtml Thu, 16 Apr 2009 12:00:00 PST Cisco uBR10012 Series Devices SNMP Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014b1.shtml Cisco uBR10012 series devices automatically enable Simple Network Management Protocol (SNMP) read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. Only Cisco uBR10012 series devices that are <img src="http://www.cisco.com/swa/j/zag2_vs_log1.asc?Log=1&vs_f=Cisco+Security+Advisories&vs_p=Cisco+uBR10012+Series+Devices+SNMP+Vulnerability" border="0" height="0" width="0" /> Cisco Security Advisory http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014b1.shtml Thu, 16 Apr 2009 12:00:00 PST