Jan282010

Multiple Vulnerabilities in Cisco Unified MeetingPlace

Published by hirantha at 5:37 AM under Cisco | Security

these patches released today: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml

This affects Cisco Unified MeetingPlace versions 5, 6, and 7.



  [Twitter] [Digg] [Facebook] [Google] [StumbleUpon]

Tags: ,

 

E-mail | Permalink | Trackback | Post RSSRSS comment feed 0 Responses

Aug272009

Cisco over-the-air-provisioning skyjacking exploit

Published by hirantha at 3:44 PM under Cisco | Security

Cisco issued a security advisory for its  1100 and 1200 Series access lightweight points. The advisory is based on work done by wifi IDS firm AirMagnet. Cisco uses an Over-The-Air-Provisioning (OTAP) protocol that uses multicast data to find a controller. During this initialization phase, a rogue controller could respond and send a bad configuration to the access point, disabling the device.

Cisco provides an advisory here: http://tools.cisco.com/security/center/viewAlert.x?alertId=18919 .

The quick summary: Establish basic configuration options like encryption keys and preferred controller lists before deploying the device.



  [Twitter] [Digg] [Facebook] [Google] [StumbleUpon]

Tags: ,

 

E-mail | Permalink | Trackback | Post RSSRSS comment feed 0 Responses

Mar262009

Cisco Releases IOS Bundle of Vulnerabilities

Published by hirantha at 7:14 AM under Cisco | Security

Cisco has officially released a "bundle" of vulnerability notices for their IOS software.  The issues related to these notifications are varied and relate to TCP, UDP, Mobile and VPN vulnerabilities.

  • Cisco IOS cTCP DoS Vulnerability
  • Cisco IOS Multiple Features IP Sockets Vulnerability
  • Cisco IOS Mobile IP and Mobile IPv6 Vulnerabilities
  • Cisco IOS Secure Copy Privilege Escalation Vulnerability
  • Cisco IOS Session Initiation Protocol DoS Vulnerability
  • Cisco IOS Multiple Features Crafted TCP Sequence Vulnerability
  • Cisco IOS Multiple Features Crafted UDP Packet Vulnerability
  • Cisco IOS WebVPN and SSLVPN Vulnerabilities

More info : http://www.cisco.com/warp/public/707/cisco-sa-20090325-bundle.shtml

 



  [Twitter] [Digg] [Facebook] [Google] [StumbleUpon]

Tags:

 

E-mail | Permalink | Trackback | Post RSSRSS comment feed 0 Responses