Main Menu

Mailing List

Name:

Email:

Archive

Archive

[SingCERT] Multiple Vulnerabilities in Cisco IOS

Last Updated on Thursday, 29 September 2011 15:03

[ Summary ]

Cisco is prone to multiple vulnerabilities which can be exploited to execute arbitrary code or cause a denial of service.

 

[ Affected Systems ]

Please refer to vendor advisories for more details.

 

[ Impact Analysis ]

By exploiting the Smart Install flaw, a remote user can execute arbitrary code on the target system.

 

A remote user exploiting other vulnerabilities can cause the target device to reload. Repeated attacks can cause a denial of service.

 

[ Solution/Workaround ]

Vendor patches are available.

 

[ Reference ]

http://www.cisco.com/warp/public/707/cisco-sa-20110928-smart-install.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-sip.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-c10k.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipv6mpls.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-nat.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-zbfw.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-dlsw.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipv6.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipsla.shtml

 

< Prev   Next >