Jump to content


Photo

Cisco advisories/updates


  • Please log in to reply
320 replies to this topic

#301 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 05 July 2017 - 09:53 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Ultra Services Framework Staging Server Arbitrary Command Execution Vuln
- https://tools.cisco....a-20170705-usf3
2017 July 5 v1.0 Critical - "... Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
CVE-2017-6714
Cisco Bug IDs: CSCvc76673
___

Cisco Ultra Services Framework UAS Unauthenticated Access Vuln
- https://tools.cisco....sa-20170705-uas
2017 July 5 v1.0 Critical - "... Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
CVE-2017-6711
Cisco Bug IDs: CSCvd29395
___

Cisco Elastic Services Controller Unauthorized Access Vuln
- https://tools.cisco....a-20170705-esc2
2017 July 5 v1.0 Critical - "... Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
CVE-2017-6713
Cisco Bug IDs: CSCvc76627
___

Cisco Ultra Services Framework AutoVNF Log File User Credential Information Disclosure Vuln
- https://tools.cisco....a-20170705-usf2
2017 July 5 v1.0 High - "... Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
CVE-2017-6709
Cisco Bug IDs: CSCvc76659
___

Additional info:
... There are -16- more dated 2017 July 5 listed here:
- https://tools.cisco....cationListing.x
___

Additional info:
- http://www.securityt....com/id/1038818
- http://www.securityt....com/id/1038819
- http://www.securityt....com/id/1038820
- http://www.securityt....com/id/1038821
- http://www.securityt....com/id/1038822
- http://www.securityt....com/id/1038823
- http://www.securityt....com/id/1038824
- http://www.securityt....com/id/1038825
- http://www.securityt....com/id/1038826
___

- https://www.us-cert....ecurity-Updates
July 05, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 06 July 2017 - 03:55 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#302 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 14 July 2017 - 04:25 AM

FYI...

- https://tools.cisco....cationListing.x

SNMP Remote Code Execution Vulns in Cisco IOS and IOS XE Software
- https://tools.cisco....a-20170629-snmp
2017 July 12 v1.4 High - "Summary: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system can be used to exploit these vulnerabilities. The vulnerabilities are due to a buffer overflow condition in the SNMP subsystem of the affected software. The vulnerabilities affect all versions of SNMP - Versions 1, 2c, and 3. To exploit these vulnerabilities via SNMP Version 2c or earlier, the attacker must know the SNMP read-only community string for the affected system. To exploit these vulnerabilities via SNMP Version 3, the attacker must have user credentials for the affected system. A successful exploit could allow the attacker to execute arbitrary code and obtain full control of the affected system or cause the affected system to reload.
Customers are advised to apply the workaround as contained in the Workarounds section below. Fixed software information is available via the Cisco IOS Software Checker. All devices that have enabled SNMP and have not explicitly excluded the affected MIBs or OIDs should be considered vulnerable. Cisco has released software updates that address these vulnerabilities. There are workarounds that address these vulnerabilities...
Vulnerable Products: These vulnerabilities affect all releases of Cisco IOS and IOS XE Software prior to the first fixed release and they affect all versions of SNMP—Versions 1, 2c, and 3..."

- http://www.securityt....com/id/1038808
CVE Reference: CVE-2017-6736, CVE-2017-6737, CVE-2017-6738, CVE-2017-6739, CVE-2017-6740, CVE-2017-6741, CVE-2017-6742, CVE-2017-6743, CVE-2017-6744
Jun 29 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): IOS and IOS XE ...
The vendor has assigned bug IDs CSCve54313, CSCve54313CSCve57697, CSCve57697CSCve60276, CSCve60276CSCve60376, CSCve60376CSCve60402, CSCve60402CSCve60507, CSCve60507CSCve66540, CSCve66540CSCve66601, CSCve66601CSCve66658, CSCve66658CSCve78027, CSCve78027CSCve89865, and CSCve89865 to these vulnerabilities.
Impact: A remote authenticated user can execute arbitrary code on the target system.
Solution: The vendor has issued a fix..."
___

- https://www.us-cert....ecurity-Updates
July 13, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 14 July 2017 - 07:38 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#303 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 18 July 2017 - 04:09 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco WebEx Browser Extension Remote Code Execution Vuln
- https://tools.cisco....-20170717-webex
2017 July 17 v1.0 Critical - "Summary: A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meetings Server, Cisco WebEx Centers (Meeting Center, Event Center, Training Center, and Support Center), and Cisco WebEx Meetings when they are running on Microsoft Windows. The vulnerability is due to a design defect in the extension. An attacker who can convince an affected user to visit an attacker-controlled web page or follow an attacker-supplied link with an affected browser could exploit the vulnerability. If successful, the attacker could execute arbitrary code with the privileges of the affected browser. Cisco has released software updates for Google Chrome and Mozilla Firefox that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco WebEx extensions for Windows when running on most supported browsers. The affected browsers are Google Chrome and Mozilla Firefox. The following versions of the Cisco WebEx browser extensions are affected by the vulnerability described in this document:
    Versions prior to 1.0.12 of the Cisco WebEx extension on Google Chrome
    Versions prior to 1.0.12 of the Cisco WebEx extension on Mozilla Firefox ..."
Cisco Bug ID's (6): CSCvf15012, CSCvf15020, CSCvf15030, CSCvf15033, CSCvf15036, CSCvf15037
CVE-2017-6753
- http://www.securityt....com/id/1038909
CVE Reference: CVE-2017-6753
Jul 17 2017
Version(s): prior to browser extension version 1.0.12
The vendor has assigned bug ID CSCvf15036 to this vulnerability...
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: The vendor has issued a fix (browser extension version 1.0.12 for Chrome, browser extension version 1.0.12 for Firefox)...
- http://www.securityt....com/id/1038910
CVE Reference: CVE-2017-6753
Jul 17 2017
Version(s): prior to browser extension version 1.0.12
The vendor has assigned bug ID CSCvf15012 to this vulnerability.
Cisco WebEx Training Center and Cisco WebEx Support Center are also affected.
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: The vendor has issued a fix (browser extension version 1.0.12 for Chrome, browser extension version 1.0.12 for Firefox)...
- http://www.securityt....com/id/1038911
CVE Reference: CVE-2017-6753
Jul 17 2017
Version(s): prior to browser extension version 1.0.12
The vendor has assigned bug ID CSCvf15020 to this vulnerability.
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: The vendor has issued a fix (browser extension version 1.0.12 for Chrome, browser extension version 1.0.12 for Firefox)...
___

- https://www.cisecuri...de-execution-2/
07/18/2017
___

- https://www.us-cert....ecurity-Updates
July 17, 2017
 

:ninja: :ninja:


Edited by AplusWebMaster, 25 July 2017 - 08:32 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#304 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 20 July 2017 - 04:53 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Web Security Appliance Command Injection and Privilege Escalation Vuln
- https://tools.cisco....a-20170719-wsa1
2017 July 19 v1.0 High - "Summary: A vulnerability in the web interface of the Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform command injection and elevate privileges to root. The attacker must authenticate with valid administrator credentials. The vulnerability is due to insufficient validation of user-supplied input on the web interface. An attacker could exploit this vulnerability by authenticating to the affected device and performing command injection over the web interface. An exploit could allow the attacker to elevate privileges from administrator to root. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects certain releases of Cisco AsyncOS Software 10.0 and later for WSA on both virtual and hardware appliances. For additional information about affected and fixed software releases, see the Fixed Software section of this advisory..."
- http://www.securityt....com/id/1038948
CVE Reference: CVE-2017-6746
Jul 19 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
The vendor has assigned bug ID CSCvd88862 to this vulnerability.
Impact: A remote authenticated user can execute arbitrary commands on the target system.
Solution: The vendor has issued a fix (10.1.1-235, 10.5.1-270)...
___

 

>> https://software.cis...19&flowid=76922

>> https://tools.cisco....-20170717-webex
Last Updated: 2017 July 19 v1.2 Critical

> https://tools.cisco....a-20170629-snmp
Last Updated: 2017 July 22 v1.5 High
___

... 7 more Cisco advisories dated 2017 Jul 19:
> https://tools.cisco....cationListing.x

... Additional info/reference:
- http://www.securityt....com/id/1038956
- http://www.securityt....com/id/1038957
- http://www.securityt....com/id/1038958
- http://www.securityt....com/id/1038959
- http://www.securityt....com/id/1038960
- http://www.securityt....com/id/1038961
- http://www.securityt....com/id/1038962
___

- https://www.us-cert....Security-Update
July 20, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 23 July 2017 - 10:01 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#305 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 27 July 2017 - 04:18 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco IOS and IOS XE Software Autonomic Networking Infrastructure DoS Vuln
- https://tools.cisco....20170726-anidos
2017 July 26 v1.0 High - "Summary: A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause autonomic nodes of an affected system to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to an unknown condition in the Autonomic Networking code of the affected software. An attacker could exploit this vulnerability by replaying captured packets to reset the Autonomic Control Plane (ACP) channel of an affected system. A successful exploit could allow the attacker to reset the ACP channel of an affected system and consequently cause the affected device to reload, resulting in a DoS condition. Cisco has not released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects devices that are running any release of Cisco IOS or Cisco IOS XE Software that supports Autonomic Networking and are configured to use Autonomic Networking. For more information about which Cisco IOS and IOS XE Software releases are vulnerable, see the Fixed Software section* of this advisory...
* https://tools.cisco....26-anidos#fixed
- http://www.securityt....com/id/1038999
CVE Reference: CVE-2017-6663
Jul 26 2017
Vendor Confirmed:  Yes  
Version(s): Denali-16.3.1 ...
The vendor has assigned bug ID CSCvd88936 to this vulnerability.
Omar Eissa of ERNW (at Black Hat USA 2017) reported this vulnerability.
Impact: A remote user can cause the target system to reload.
Solution: No solution was available at the time of this entry...
___

Cisco IOS and IOS XE Software Autonomic Control Plane Channel Information Disclosure Vuln
- https://tools.cisco....20170726-aniacp
2017 July 26 v1.0 High - "Summary: A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to reset the Autonomic Control Plane (ACP) of an affected system and view ACP packets that are transferred in clear text within an affected system.
The vulnerability is due to unknown reasons. An attacker could exploit this vulnerability by capturing and replaying ACP packets that are transferred within an affected system. A successful exploit could allow the attacker to reset the ACP of an affected system, resulting in a denial of service (DoS) condition. A successful exploit could also allow the attacker to capture and view ACP packets, which should have been encrypted over the ACP, in clear text. Cisco has not released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects devices that are running any release of Cisco IOS or Cisco IOS XE Software that supports Autonomic Networking and are configured to use Autonomic Networking. For more information about which Cisco IOS and IOS XE Software releases are vulnerable, see the Fixed Software section* of this advisory...
* https://tools.cisco....26-aniacp#fixed
- http://www.securityt....com/id/1038998
CVE Reference: CVE-2017-6665
Jul 26 2017
Vendor Confirmed:  Yes  
Version(s): 15.5(1)S3.1, Denali-16.2.1 ...
The vendor has assigned bug ID CSCvd51214 to this vulnerability.
Impact: A remote user can obtain potentially sensitive information on the target system.
Solution: No solution was available at the time of this entry...
___

Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vuln
- https://tools.cisco....20170726-anicrl
2017 July 26 v1.0 Medium - "Summary: A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked. The vulnerability exists because the affected software does not transfer certificate revocation lists (CRLs) across Autonomic Control Plane (ACP) channels. An attacker could exploit this vulnerability by connecting an autonomic node, which has a known and revoked certificate, to the autonomic domain of an affected system. A successful exploit could allow the attacker to insert a previously trusted autonomic node into the autonomic domain of an affected system after the certificate for the node has been revoked. There are no workarounds that address this vulnerability...
Vulnerable Products: At the time of publication, this vulnerability affected devices that are running Release 16.x of Cisco IOS XE Software and are configured to use Autonomic Networking. This vulnerability does not affect devices that are running an earlier release of Cisco IOS XE Software or devices that are not configured to use Autonomic Networking. For more information about which Cisco IOS XE Software releases are vulnerable, see the Fixed Software section* of this advisory...
* https://tools.cisco....26-anicrl#fixed
- http://www.securityt....com/id/1038997
CVE Reference: CVE-2017-6664
Jul 26 2017
Vendor Confirmed:  Yes  
Version(s): 15.5(1)S3.1, Denali-16.2.1 ...
The vendor has assigned bug ID CSCvd22328 to this vulnerability.
Impact: A remote user can bypass the certificate revocation list check to access resources on the target network.
Solution: No solution was available at the time of this entry...
___

Cisco Access Control System Stored Cross-Site Scripting Vuln
- https://tools.cisco....sa-20170726-acs
2017 July 26 v1.0 Medium - "Summary: A vulnerability in the web-based management interface of the Cisco Secure Access Control System (ACS) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system. The vulnerability is due to insufficient input validation of user-supplied values and a lack of encoding of user-supplied data. An attacker could exploit this vulnerability by convincing a user to click a malicious link. Additional information about XSS attacks and potential mitigations can be found at the following links:
> https://tools.cisco....derstanding-xss
> https://www.owasp.or...Scripting_(XSS)
There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco Secure Access Control System (ACS). For information about affected software releases, consult the Cisco bug ID(s)..."
- http://www.securityt....com/id/1038996
CVE Reference: CVE-2017-6769
Jul 26 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 5.8(0.8), 5.8(1.5) ...
The vendor has assigned bug ID CSCve70587 to this vulnerability.
Impact: A remote user can access the target user's cookies (including authentication cookies), if any, associated with the site running the Cisco Secure Access Control System software, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.
Solution: The vendor has issued a fix...
___

- https://www.us-cert....ecurity-Updates
July 27, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 27 July 2017 - 01:42 PM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#306 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 03 August 2017 - 04:22 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Videoscape Distribution Suite Cache Server DoS Vuln
- https://tools.cisco....sa-20170802-vds
2017 Aug 2 v1.0 High - "Summary: A vulnerability in the cache server within Cisco Videoscape Distribution Suite (VDS) for Television could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on a targeted appliance. The vulnerability is due to excessive mapped connections exhausting the allotted resources within the system. An attacker could exploit this vulnerability by sending large amounts of inbound traffic to a device with the intention of overloading certain resources. A successful exploit could cause the device to reload, resulting in a DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco Videoscape Distribution Suite (VDS) for Television...
CVE-2017-6745
Cisco Bug IDs: CSCvc39260
___

Cisco Identity Services Engine Authentication Bypass Vuln
- https://tools.cisco....sa-20170802-ise
2017 Aug 2 v1.0 High - "Summary: A vulnerability in the authentication module of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to bypass local authentication. The vulnerability is due to improper handling of authentication requests and policy assignment for externally authenticated users. An attacker could exploit this vulnerability by authenticating with a valid external user account that matches an internal username and incorrectly receiving the authorization policy of the internal account. An exploit could allow the attacker to have Super Admin privileges for the ISE Admin portal. This vulnerability does not affect endpoints authenticating to the ISE. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: The vulnerability affects the following Cisco Identity Services Engine (ISE) products running Release 1.3, 1.4, 2.0.0, 2.0.1, or 2.1.0. Release 2.2.x is not affected...
- http://www.securityt....com/id/1039054
CVE Reference: CVE-2017-6747
Aug 2 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3300 Series Appliances; 1.3, 1.4, 2.0.0, 2.0.1, 2.1.0 ...
The vendor has assigned bug ID CSCvb10995 to this vulnerability.
Impact: A remote user can bypass authentication to gain Super Admin privileges on Identity Services Engine (ISE) Admin portal.
Solution: The vendor has issued a fix...
___

... -12- other Cisco advisories dated 2017 Aug 2
are listed here: https://tools.cisco....cationListing.x

Additional info:
- http://www.securityt....com/id/1039055
- http://www.securityt....com/id/1039056
- http://www.securityt....com/id/1039057
- http://www.securityt....com/id/1039058
- http://www.securityt....com/id/1039059
- http://www.securityt....com/id/1039060
- http://www.securityt....com/id/1039061
- http://www.securityt....com/id/1039062
- http://www.securityt....com/id/1039063
- http://www.securityt....com/id/1039064
___

- https://www.us-cert....ecurity-Updates
Aug 02, 2017
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#307 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 17 August 2017 - 04:00 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Virtual Network Function Element Manager Arbitrary Command Execution Vuln
- https://tools.cisco....-sa-20170816-em
2017 Aug 16 v1.0 High - "Summary: A vulnerability in the Cisco Virtual Network Function (VNF) Element Manager could allow an authenticated, remote attacker to elevate privileges and run commands in the context of the root user on the server. The vulnerability is due to command settings that allow Cisco VNF Element Manager users to specify arbitrary commands that will run as root on the server. An attacker could use this setting to elevate privileges and run commands in the context of the root user on the server. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco VNF Element Manager Releases prior to 5.0.4 and 5.1.4...
CVE-2017-6710
Cisco Bug IDs: CSCvc76670
___

Cisco Application Policy Infrastructure Controller Custom Binary Privilege Escalation Vuln
- https://tools.cisco....-20170816-apic2
2017 Aug 16 v1.0 High - "Summary: A vulnerability in the build procedure for certain executable system files installed at boot time on Cisco Application Policy Infrastructure Controller (APIC) devices could allow an authenticated, local attacker to gain root-level privileges. The vulnerability is due to a custom executable system file that was built to use relative search paths for libraries without properly validating the library to be loaded. An attacker could exploit this vulnerability by authenticating to the device and loading a malicious library that can escalate the privilege level. A successful exploit could allow the attacker to gain root-level privileges and take full control of the device. The attacker must have valid user credentials to log in to the device. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco APIC if running software release 1.0(1e) until the first fixed release...
- http://www.securityt....com/id/1039179
CVE Reference: CVE-2017-6768
Aug 16 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
The vendor has assigned bug ID CSCvc96087 to this vulnerability.
Impact: A local user can obtain root privileges on the target system.
Solution: The vendor has issued a fix....
___

Cisco Application Policy Infrastructure Controller SSH Privilege Escalation Vuln
- https://tools.cisco....-20170816-apic1
2017 Aug 16 v1.0 High - "Summary: A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote attacker to gain higher privileges than the account is assigned. The attacker will be granted the privileges of the last user to log in, regardless of whether those privileges are higher or lower than what should have been granted. The attacker cannot gain root-level privileges. The vulnerability is due to a limitation with how Role-Based Access Control (RBAC) grants privileges to remotely authenticated users when login occurs via SSH directly to the local management interface of the APIC. An attacker could exploit this vulnerability by authenticating to the targeted device. The attacker's privilege level will be modified to match that of the last user to log in via SSH. An exploit could allow the attacker to gain elevated privileges and perform CLI commands that should be restricted by the attacker's configured role. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco APIC under the following conditions:
    The attacker uses SSH to connect to the local management interface of the APIC.
    The attacker uses a remote user credential, which means that the authentication is done by a remote authentication server (for example, TACACS or RADIUS).
    The attacker has valid user credentials for the remote user.
Cisco APIC is not vulnerable under these conditions:
    A locally configured user on the device is not vulnerable.
    If the remote connection to the APIC is done via the Representational State Transfer (REST) API or GUI, the device is not vulnerable. However, if the Launch SSH feature within the GUI is used, it could be vulnerable if remote authentication is used...
- http://www.securityt....com/id/1039180
CVE Reference: CVE-2017-6767
Aug 16 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
The vendor has assigned bug ID CSCvc34335 to this vulnerability.
Impact: A remote authenticated user can gain elevated privileges on the target system.
Solution: The vendor has issued a fix...  
___

... -16- other Cisco advisories dated 2017 Aug 16
are listed here: https://tools.cisco....cationListing.x

Additional info:
- http://www.securityt....com/id/1039181
- http://www.securityt....com/id/1039182
- http://www.securityt....com/id/1039183
- http://www.securityt....com/id/1039184
- http://www.securityt....com/id/1039185
- http://www.securityt....com/id/1039186
- http://www.securityt....com/id/1039187
- http://www.securityt....com/id/1039188
- http://www.securityt....com/id/1039189
- http://www.securityt....com/id/1039190
- http://www.securityt....com/id/1039191
___

- https://www.us-cert....ecurity-Updates
Aug 16, 2017
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#308 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 07 September 2017 - 10:32 AM

FYI...

> https://tools.cisco....cationListing.x
-19- Cisco Advisories dated 2017 Sep 06 at the URL above.

> https://tools.cisco....Vulnerabilities
-1- Cisco Advisory dated 2017 Sep 06 at the URL above.

Additional details:

- http://www.securityt....com/id/1039274
- http://www.securityt....com/id/1039275
- http://www.securityt....com/id/1039276
- http://www.securityt....com/id/1039277
- http://www.securityt....com/id/1039278

- http://www.securityt....com/id/1039279
- http://www.securityt....com/id/1039280
- http://www.securityt....com/id/1039281
- http://www.securityt....com/id/1039282
- http://www.securityt....com/id/1039283

- http://www.securityt....com/id/1039284
- http://www.securityt....com/id/1039285
- http://www.securityt....com/id/1039286
- http://www.securityt....com/id/1039287
- http://www.securityt....com/id/1039288

- http://www.securityt....com/id/1039289
- http://www.securityt....com/id/1039290
___

> https://tools.cisco....cationListing.x
-2- Cisco Advisories dated 2017 Sep 07 at the URL above.
 

:ninja: :ninja: :ninja: :ninja: :ninja:


Edited by AplusWebMaster, 07 September 2017 - 05:49 PM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#309 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 12 September 2017 - 06:44 AM

FYI...

- https://tools.cisco....cationListing.x

Apache Struts 2 Remote Code Execution Vulnerability Affecting Multiple Cisco Products
- https://tools.cisco....909-struts2-rce
2017 Sep 11 v1.1 Critical - "Summary: On September 7, 2017, the Apache Software Foundation released a security bulletin that disclosed a vulnerability in the Freemarker tag functionality of the Apache Struts 2 package. The vulnerability could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. The Apache Software Foundation classifies the vulnerability as a Medium Severity vulnerability. For more information about this vulnerability, refer to the Details section* of this advisory...
* https://tools.cisco....ts2-rce#details
Multiple Cisco products incorporate a version of the Apache Struts 2 package that is affected by this vulnerability. This advisory will be updated as additional information becomes available...
Affected Products: For information about whether a product is affected by this vulnerability, refer to the Vulnerable Products and Products Confirmed Not Vulnerable sections of this advisory**. The Vulnerable Products section includes Cisco bug IDs for each affected product. The bugs are accessible through the Cisco Bug Search Tool and contain additional platform-specific information, including any available workarounds and fixed software releases. If a Cisco product is not listed in the Products Under Investigation, Vulnerable Products, or Products Confirmed Not Vulnerable section of this advisory, it is assumed to not be vulnerable.
** https://tools.cisco....e#notVulnerable
Details: A vulnerability in Apache Struts 2 could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability is due to the unsafe use of writable expression values in Freemarker content that is processed by the affected application. An attacker could exploit the vulnerability by adding malicious values to writable expressions that the attacker submits to the affected application for processing. If successful, the attacker could execute arbitrary code in the security context of the affected application on the targeted system.
This vulnerability has been assigned the following CVE ID: CVE-2017-12611
The Security Impact Rating (SIR) of this vulnerability is -Critical-.
Workarounds: Any workarounds that address this vulnerability will be documented in the Cisco bugs, which are accessible through the Cisco Bug Search Tool[3]... Public exploits are available for this vulnerability..."
3] https://sso.cisco.co...s/CDClogin.html
... The following table lists Cisco products that are affected by the vulnerability described in this advisory...
Cisco Digital Media Manager - CSCvf89977 - No fix expected (end-of-software maintenance, 19-Aug-2016)
Voice and Unified Communications Devices:
Cisco Hosted Collaboration Solution for Contact Center - CSCvf90001     
Cisco Unified Contact Center Enterprise - CSCvf89964     
Cisco Unified Intelligent Contact Management Enterprise - CSCvf89964
___

Multiple Vulnerabilities in Apache Struts 2 Affecting Cisco Products: September 2017
- https://tools.cisco....0170907-struts2
2017 Sep 11 v1.2 Critical
- https://tools.cisco....struts2#details
"...The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of these vulnerabilities against Cisco products.
For CVE-2017-9805, Apache Struts REST plug-in XML processing arbitrary code execution vulnerability, there are reports of active exploitation in the wild. At the time of publication, this exploitation appears to be primarily scanning activity that is being performed in attempts to identify potentially vulnerable systems.
Source: On September 5, 2017, the Apache Software Foundation publicly disclosed these vulnerabilities in the following security bulletins:
        CVE-2017-9805: http://struts.apache...ocs/s2-052.html
        CVE-2017-9804: http://struts.apache...ocs/s2-050.html
        CVE-2017-9793: http://struts.apache...ocs/s2-051.html..."
___

Apache Struts 2 framework REST plugin insecurely deserializes untrusted XML data
> http://www.kb.cert.org/vuls/id/112992
6 Sep 2017 - "Overview: Apache Struts 2 framework, versions 2.5 to 2.5.12, with REST plugin insecurely deserializes untrusted XML data. A remote, unauthenticated attacker can leverage this vulnerability to execute arbitrary code in the context of the Struts application... Refer to the researcher's blog post[4] for more information about this vulnerability. A Metasploit module with exploit code is publicly available[5]..."
The vendor has released version 2.5.13 to address this vulnerability[6]. No workaround is possible according to the vendor, so patching is strongly recommended."

4] https://lgtm.com/blo...s_CVE-2017-9805

5] https://github.com/r...pull/8924/files

6] https://struts.apach...ocs/s2-052.html
___

 

Additional information:
- http://www.securityt....com/id/1039261
- http://www.securityt....com/id/1039262
- http://www.securityt....com/id/1039263
___

> https://www.us-cert....Security-Update
Sep 11, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 12 September 2017 - 07:25 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#310 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 15 September 2017 - 05:18 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Meeting Server TURN Server Unauthorized Access and Information Disclosure Vuln
- https://tools.cisco....0170913-cmsturn
2017 Sep 13 v1.0 Critical - "Summary: A vulnerability in the Traversal Using Relay NAT (TURN) server included with Cisco Meeting Server (CMS) could allow an authenticated, remote attacker to gain unauthenticated or unauthorized access to components of or sensitive information in an affected system. The vulnerability is due to an incorrect default configuration of the TURN server, which could expose internal interfaces and ports on the external interface of an affected system. An attacker could exploit this vulnerability by using a TURN server to perform an unauthorized connection to a Call Bridge, a Web Bridge, or a database cluster in an affected system, depending on the deployment model and CMS services in use. A successful exploit could allow the attacker to gain unauthenticated access to a Call Bridge or database cluster in an affected system or gain unauthorized access to sensitive meeting information in an affected system. To exploit this vulnerability, the attacker must have valid credentials for the TURN server of the affected system. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco Meeting Server (CMS) deployments that are running a CMS Software release prior to Release 2.0.16, 2.1.11, or 2.2.6..."
- http://www.securityt....com/id/1039357
CVE Reference: CVE-2017-12249
Sep 13 2017
Impact: Host/resource access via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes ...
The vendor has assigned bug ID CSCvf51127 to this vulnerability.
Impact: A remote authenticated user can gain access to components of the target system.
Solution: The vendor has issued a fix (2.0.16, 2.1.11, 2.2.6)...
 

:ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#311 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 21 September 2017 - 05:37 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Unified Customer Voice Portal Operations Console Privilege Escalation Vuln
- https://tools.cisco....sa-20170920-cvp
2017 Sep 20 v1.0 High - "Summary: A vulnerability in the Operations, Administration, Maintenance, and Provisioning (OAMP) credential reset functionality for Cisco Unified Customer Voice Portal (CVP) could allow an authenticated, remote attacker to gain elevated privileges. The vulnerability is due to a lack of proper input validation. An attacker could exploit this vulnerability by authenticating to the OAMP and sending a crafted HTTP request. A successful exploit could allow the attacker to gain administrator privileges. The attacker must successfully authenticate to the system to exploit this vulnerability. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco Unified Customer Voice Portal (CVP) running software release 10.5, 11.0, or 11.5..."
- http://www.securityt....com/id/1039411
CVE Reference: CVE-2017-12214
Sep 21 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 10.5, 11.0, 11.5 ...
The vendor has assigned bug ID CSCve92752 to this vulnerability.
Impact: A remote authenticated user can gain administrator privileges on the target system.
Solution: The vendor has issued a fix...
___

Cisco Email Security Appliance DoS Vuln
- https://tools.cisco....sa-20170920-esa
2017 Sep 20 v1.0 High - "Summary: A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco Email Security Appliance could allow an unauthenticated, remote attacker to cause an affected device to run out of memory and stop scanning and forwarding email messages. When system memory is depleted, it can cause the filtering process to crash, resulting in a denial of service (DoS) condition on the device. The vulnerability is due to improper input validation of email attachments that contain corrupted fields. An attacker could exploit this vulnerability by sending an email message with an attachment that contains corrupted fields through a targeted device. When the affected software filters the attachment, the filtering process could crash when the system runs out of memory and the process restarts, resulting in a DoS condition. After the filtering process restarts, the software resumes filtering for the same attachment, causing the filtering process to crash and restart again. A successful exploit could allow the attacker to cause a repeated DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects software version 9.0 through the first fixed release of Cisco AsyncOS Software for Cisco Email Security Appliances, both virtual and hardware appliances, if the software is configured to apply a message filter or content filter to incoming email attachments. The vulnerability is not limited to any specific rules or actions for a message filter or content filter...
- http://www.securityt....com/id/1039414
CVE Reference: CVE-2017-12215
Sep 21 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 9.0, 9.1, 9.5, 9.6, 9.7, 9.8, 9.8.1, 10.0, 11.0 ...
The vendor has assigned bug ID CSCvd29354 to this vulnerability.
Impact: A remote user can cause the device to stop scanning and forwarding email messages.
Solution: The vendor has issued a fix (9.8.1, 10.0.2-020)...
___

Cisco Small Business Managed Switches DoS Vuln
- https://tools.cisco....a-20170920-sbms
2017 Sep 20 v1.0 High - "Summary: A vulnerability in the Secure Shell (SSH) subsystem of Cisco Small Business Managed Switches software could allow an authenticated, remote attacker to cause a reload of the affected switch, resulting in a denial of service (DoS) condition. The vulnerability is due to improper processing of SSH connections. An attacker could exploit this vulnerability by logging in to an affected switch via SSH and sending a malicious SSH message. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects the following Cisco products when SSH is enabled:
    Cisco Small Business 300 Series Managed Switches
    Cisco Small Business 500 Series Stackable Managed Switches
    Cisco 350 Series Managed Switches
    Cisco 350X Series Stackable Managed Switches
    Cisco 550X Series Stackable Managed Switches
    Cisco ESW2 Series Advanced Switches ...
CVE-2017-6720
Cisco Bug IDs: CSCvb48377 "
___

There are -7- additional new Cisco advisories
dated 2017 Sep 20 listed here:
> https://tools.cisco....cationListing.x
___

- https://www.us-cert....ecurity-Updates
Sep 20, 2017
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#312 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 30 September 2017 - 09:27 AM

FYI...

> https://tools.cisco....cationListing.x

Cisco IOS XE Software Web UI REST API Authentication Bypass Vuln
- https://tools.cisco....0170927-restapi
27 Sep 2017 v1.0 Critical - "Summary: A vulnerability in the REST API of the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass authentication to the REST API of the web UI of the affected software. The vulnerability is due to insufficient input validation for the REST API of the affected software. An attacker could exploit this vulnerability by sending a malicious API request to an affected device. A successful exploit could allow the attacker to bypass authentication and gain access to the web UI of the affected software. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco devices that are running a vulnerable release of Cisco IOS XE Software, if the HTTP Server feature is enabled for the device. The newly redesigned, web-based administration UI was introduced in the Denali 16.2 Release of Cisco IOS XE Software. This vulnerability does not affect the web-based administration UI in earlier releases of Cisco IOS XE Software..."
- http://www.securityt....com/id/1039447
CVE Reference: CVE-2017-12229
Sep 27 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
Systems with the HTTP Server feature enabled are affected.
The vulnerability was introduced in version 16.2.
The vendor has assigned bug ID CSCuz46036 to this vulnerability.
Impact: A remote user can bypass authentication and gain access to the web user interface REST API.
Solution: The vendor has issued a fix...
___

Cisco IOS XE Software Web UI Privilege Escalation Vuln
- https://tools.cisco....0170927-privesc
27 Sep 2017 v1.0 Critical - "Summary: A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate their privileges on an affected device. The vulnerability is due to incorrect default permission settings for new users who are created by using the web UI of the affected software. An attacker could exploit this vulnerability by using the web UI of the affected software to create a new user and then logging into the web UI as the newly created user. A successful exploit could allow the attacker to elevate their privileges on the affected device. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco devices that are running a vulnerable release Cisco IOS XE Software, if the HTTP Server feature is enabled for the device. The newly redesigned, web-based administration UI was introduced in the Denali 16.2 Release of Cisco IOS XE Software. This vulnerability does not affect the web-based administration UI in earlier releases of Cisco IOS XE Software. For more information about which Cisco IOS XE Software releases are vulnerable, see the Fixed Software section* of this advisory..."
* https://tools.cisco....7-privesc#fixed
- http://www.securityt....com/id/1039446
CVE Reference: CVE-2017-12230
Sep 27 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
Systems with the HTTP Server feature enabled are affected.
The vulnerability was introduced in version 16.2.
The vendor has assigned bug ID CSCuy83062 to this vulnerability.
Impact: A remote authenticated user can gain elevated privileges on the target system.
Solution: The vendor has issued a fix...
___

Cisco IOS and IOS XE Software DHCP Remote Code Execution Vuln
- https://tools.cisco....a-20170927-dhcp
27 Sep 2017 v1.0 Critical - "Summary: The DHCP relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system. The attacker could also cause an affected system to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a buffer overflow condition in the DHCP relay subsystem of the affected software. An attacker could exploit this vulnerability by sending a crafted DHCP Version 4 (DHCPv4) packet to an affected system. A successful exploit could allow the attacker to execute arbitrary code and gain full control of the affected system or cause the affected system to reload, resulting in a DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco devices that are running a vulnerable release of Cisco IOS Software or Cisco IOS XE Software and are configured as a DHCP relay agent. For information about which Cisco IOS and IOS XE Software releases are vulnerable, see the Fixed Software section* of this advisory..."
* https://tools.cisco....0927-dhcp#fixed
- http://www.securityt....com/id/1039445
CVE Reference: CVE-2017-12240
Sep 27 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
Systems configured for DHCP relay are affected.
The vendor has assigned bug IDs CSCsm45390 and CSCuw77959 to this vulnerability.
Impact: A remote user can execute arbitrary code on the target system.
Solution: The vendor has issued a fix...
___

There are -12- additional Cisco advisories rated Critical or High
dated 2017 Sep 27 listed here:
> https://tools.cisco....cationListing.x
___

Additional information:
- http://www.securityt....com/id/1039448
- http://www.securityt....com/id/1039450
- http://www.securityt....com/id/1039451
- http://www.securityt....com/id/1039452
- http://www.securityt....com/id/1039453

- http://www.securityt....com/id/1039454
- http://www.securityt....com/id/1039455
- http://www.securityt....com/id/1039456
- http://www.securityt....com/id/1039457
- http://www.securityt....com/id/1039458

- http://www.securityt....com/id/1039459
- http://www.securityt....com/id/1039460
___

- https://www.us-cert....ecurity-Updates
Sep 27, 2017
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#313 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 05 October 2017 - 04:09 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Firepower Detection Engine SSL Decryption Memory Consumption DoS Vuln
- https://tools.cisco....sa-20171004-ftd
4 Oct 2017 v1.0 High - "Summary: A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory. If this memory leak persists over time, a denial of service (DoS) condition could develop because traffic can cease to be forwarded through the device. The vulnerability is due to an error in how the Firepower Detection Snort Engine handles SSL traffic decryption and notifications to and from the Adaptive Security Appliance (ASA) handler. An attacker could exploit this vulnerability by sending a steady stream of malicious Secure Sockets Layer (SSL) traffic through the device. An exploit could allow the attacker to cause a DoS condition when the device runs low on system memory. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco Firepower Threat Defense (FTD) Software Releases 6.0.1 and later when the software is configured as described in this section and is running on any of the following Cisco products:
 Adaptive Security Appliance (ASA) 5500-X Series Next-Generation Firewalls
 Firepower 2100 Series Security Appliances
 Firepower 4100 Series Security Appliances
 Firepower 9300 Series Security Appliances...
CVE-2017-12245
Cisco Bug IDs: CSCve02069
___

Cisco Firepower Detection Engine IPv6 DoS Vuln
- https://tools.cisco....0171004-fpsnort
4 Oct 2017 v1.0 High - "Summary: A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial of service (DoS) condition because the Snort process restarts unexpectedly. The vulnerability is due to improper input validation of the fields in the IPv6 extension header packet. An attacker could exploit this vulnerability by sending a malicious IPv6 packet to the detection engine on the targeted device. An exploit could allow the attacker to cause a DoS condition if the Snort process restarts and traffic inspection is bypassed or traffic is dropped. This vulnerability is specific to IPv6 traffic only. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects Cisco Firepower System Software Releases 6.0 and later when the software has one or more file action policies configured and is running on any of the following Cisco products:
 3000 Series Industrial Security Appliances (ISR)
 Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services
 Adaptive Security Appliance (ASA) 5500-X Series Next-Generation Firewalls
 Advanced Malware Protection (AMP) for Networks, 7000 Series Appliances
 Advanced Malware Protection (AMP) for Networks, 8000 Series Appliances
 FirePOWER 7000 Series Appliances
 FirePOWER 8000 Series Appliances
 Firepower Threat Defense for Integrated Services Routers (ISRs)
 Firepower 2100 Series Security Appliances
 Firepower 4100 Series Security Appliances
 Firepower 9300 Series Security Appliances
 Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware...
CVE-2017-12244
Cisco Bug IDs: CSCvd34776
___

Cisco License Manager Directory Traversal Information Disclosure Vuln
- https://tools.cisco....sa-20171004-clm
4 Oct 2017 v1.0 High - "Summary: A vulnerability in the web interface of Cisco License Manager software could allow an unauthenticated, remote attacker to download and view files within the application which should be restricted. The issue is due to improper sanitization of user-supplied input in HTTP request parameters that describe filenames. An attacker could exploit this vulnerability by using directory traversal techniques to submit a path to a desired file location. An exploit could allow the attacker to view application files which may contain sensitive information. Cisco has not released and will not release a software update to address this vulnerability. There are no workarounds that address this vulnerability...
Vulnerable Products: This vulnerability affects all releases of Cisco License Manager software...
Details: Cisco License Manager is a secure client/server-based application that is used to manage Cisco IOS Software activation and license management for a wide range of Cisco platforms running Cisco IOS Software as well as other operating systems. The Cisco License Manager GUI client and server software was offered free of cost and no service contract was required...
Cisco has not released and will not release software updates to address the vulnerability described in this advisory. The Cisco License Manager has entered the end-of-life (EoL) process. Please refer to the Cisco License Manager 3.2.6 Product Bulletin EoL notice.
Customers are encouraged to migrate to Cisco Smart Software Licensing, more information is available on the Smart Software Licensing Overview web page*..."
* https://www.cisco.co...-licensing.html
CVE-2017-12263
Cisco Bug IDs: CSCvd83577
___

Cisco Adaptive Security Appliance Software Direct Authentication DoS Vuln
- https://tools.cisco....sa-20171004-asa
4 Oct 2017 v1.0 High - "Summary: A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause an affected device to unexpectedly reload, resulting in a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the HTTP header. An attacker could exploit this vulnerability by sending a crafted HTTP request to the local IP address of an affected device. A successful exploit could allow the attacker to cause the affected device to reload.
Note: Only traffic directed to the affected system can be used to exploit this vulnerability. This vulnerability affects systems that have the direct authentication feature enabled. This vulnerability can be triggered by IPv4 or IPv6 traffic. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability....
Vulnerable Products: This vulnerability affects Cisco Adaptive Security Appliance (ASA) Software that is running on the following Cisco products:
 ASA 5500 Series Adaptive Security Appliances
 ASA 5500-X Series Next-Generation Firewalls
 ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers
 ASA 1000V Cloud Firewall
 Adaptive Security Virtual Appliance (ASAv)
 Firepower 4110 Security Appliance
 Firepower 9300 ASA Security Module
 ISA 3000 Industrial Security Appliance...
CVE-2017-12246
Cisco Bug IDs: CSCvd59063
___

There are -11- additional Cisco advisories
dated 2017 Oct 4 listed here:
> https://tools.cisco....cationListing.x
___
 
Additional information:
- http://www.securityt....com/id/1039502
- http://www.securityt....com/id/1039503
- http://www.securityt....com/id/1039504
- http://www.securityt....com/id/1039505
- http://www.securityt....com/id/1039506
- http://www.securityt....com/id/1039507
___

- https://www.us-cert....ecurity-Updates
Oct 04, 2017
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#314 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 16 October 2017 - 02:53 PM

FYI...

- https://tools.cisco....cationListing.x

Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II
- https://tools.cisco....sa-20171016-wpa
2017 Oct 16 v1.0 High
Cisco Bug ID (10)    
CSCvf47808
CSCvf71749
CSCvf71751
CSCvf71754
CSCvf71761
CSCvf96789
CSCvf96814
CSCvf96818
CSCvg10793
CSCvg21098

CVE-2017-13077
CVE-2017-13078
CVE-2017-13079
CVE-2017-13080
CVE-2017-13081
CVE-2017-13082
CVE-2017-13084
CVE-2017-13086
CVE-2017-13087
CVE-2017-13088
 
- https://www.security....com/id/1039570
CVE Reference: CVE-2017-13082
Oct 16 2017

- https://www.security....com/id/1039571
CVE Reference: CVE-2017-13082
Oct 16 2017
___

> https://tools.cisco....sa-20171016-wpa
Revision History
Version 1.3
- Updated the summary section. Updated information for vulnerable products.
- Added section to assess wireless deployments for CVE-2017-13082.     
2017-October-18

> https://nvd.nist.gov.../CVE-2017-13082
Wi-Fi Protected Access (WPA and WPA2)
Last Modified: 10/17/2017
 

:ninja: :ninja:


Edited by AplusWebMaster, 19 October 2017 - 10:40 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#315 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 18 October 2017 - 05:44 PM

FYI...

- https://tools.cisco....cationListing.x

Cisco Cloud Services Platform 2100 Unauthorized Access Vuln
- https://tools.cisco....sa-20171018-ccs
2017 Oct 18 v1.0 Critical

- https://www.security....com/id/1039613
CVE Reference: CVE-2017-12251
Oct 18 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): CSP 2100; releases 2.1.0, 2.1.1, 2.1.2, 2.2.0, 2.2.1, 2.2.2 ...
The vendor has assigned bug ID CSCve64690 to this vulnerability.
Impact: A remote authenticated user can gain access to the target services or virtual machines on the target device.
Solution: The vendor has issued a fix.
The vendor advisory is available at:
- https://tools.cisco....sa-20171018-ccs
___

Cisco FXOS and NX-OS System Software Authentication, Authorization, and Accounting DoS Vuln
- https://tools.cisco....20171018-aaavty
2017 Oct 18 v1.0 High

- https://www.security....com/id/1039614
CVE Reference: CVE-2017-3883
Oct 18 2017
Fix Available:  Yes  Vendor Confirmed:  Yes ...
The vendor has assigned bug IDs CSCuq58760, CSCuq71257, CSCur97432, CSCus05214, CSCux54898, CSCvc33141, CSCvd36971, and CSCve03660 to this vulnerability.
Impact: A remote user can cause the target system to reload.
Solution: The vendor has issued a fix.
The vendor advisory is available at:
- https://tools.cisco....20171018-aaavty
___

Cisco Small Business SPA50x, SPA51x, and SPA52x Series IP Phones SIP DoS Vuln
- https://tools.cisco....a-20171018-sip1
2017 Oct 18 v1.0 High

- https://www.security....com/id/1039616
CVE Reference: CVE-2017-12260
Oct 18 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): SPA50x, SPA51x, and SPA52x series; firmware 7.6.2SR1 and before
The vendor has assigned bug ID CSCvc63986 to this vulnerability.
Impact: A remote user can cause the target device to become unresponsive.
A manual restart is required to return the system to normal operations.
Solution: The vendor has issued a fix (7.6(2)SR2).
The vendor advisory is available at:
- https://tools.cisco....a-20171018-sip1
___

Cisco Small Business SPA51x Series IP Phones SIP DoS Vuln
- https://tools.cisco....sa-20171018-sip
2017 Oct 18 v1.0 High

- https://www.security....com/id/1039615
CVE Reference: CVE-2017-12259
Oct 18 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): SPA51x series; firmware 7.6.2SR1 and before
The vendor has assigned bug ID CSCvc63982 to this vulnerability.
Impact: A remote user can cause the target device to become unresponsive.
A manual restart is required to return the system to normal operations.
Solution: The vendor has issued a fix (7.6(2)SR2).
The vendor advisory is available at:
- https://tools.cisco....sa-20171018-sip
___

There are -13- additional Cisco advisories
dated 2017 Oct 18 (v1.0) listed here:
> https://tools.cisco....cationListing.x
___

- https://www.us-cert....ecurity-Updates
Oct 18, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 19 October 2017 - 05:19 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#316 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 01 November 2017 - 12:35 PM

FYI...

- https://tools.cisco....cationListing.x

Cisco Wireless LAN Controller 802.11v Basic Service Set Transition Management DoS Vuln
- https://tools.cisco....a-20171101-wlc2
2017 Nov 01 v1.0 High
CVE-2017-12275
Cisco Bug IDs: CSCvb57803
___

Cisco Wireless LAN Controller Simple Network Management Protocol Memory Leak DoS Vuln
- https://tools.cisco....a-20171101-wlc1
2017 Nov 01 v1.0 High
CVE-2017-12278
Cisco Bug IDs: CSCvc71674
___

Cisco Identity Services Engine Privilege Escalation Vuln
- https://tools.cisco....sa-20171101-ise
2017 Nov 01 v1.0 High
CVE-2017-12261
Cisco Bug IDs: CSCve74916
___

Cisco Firepower 4100 Series NGFW and Firepower 9300 Security Appliance Smart Licensing Command Injection Vuln
- https://tools.cisco....a-20171101-fpwr
2017 Nov 01 v1.0 High
CVE-2017-12277
Cisco Bug IDs: CSCvb86863
___

There are -12- additional Cisco advisories
dated Nov 01 (v1.0) listed here:
> https://tools.cisco....cationListing.x
Note: Check revisions; some have already been updated from 'v1.0'.
___

Additional information:
- https://www.security....com/id/1039711
- https://www.security....com/id/1039712
- https://www.security....com/id/1039713
- https://www.security....com/id/1039714
- https://www.security....com/id/1039715

- https://www.security....com/id/1039716
- https://www.security....com/id/1039717
- https://www.security....com/id/1039718
- https://www.security....com/id/1039719
- https://www.security....com/id/1039720

- https://www.security....com/id/1039721
- https://www.security....com/id/1039722
- https://www.security....com/id/1039723
- https://www.security....com/id/1039724
- https://www.security....com/id/1039725
___

- https://www.us-cert....ecurity-Updates
Nov 01, 2017
___

Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol DoS Vuln
- https://tools.cisco....sa-20171103-bgp
2017 Nov 7 v1.1
CVE-2017-12319
Cisco Bug IDs: CSCvg52875, CSCui67191

- https://www.us-cert....IOS-XE-Software
2017 Nov 3
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 08 November 2017 - 07:27 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#317 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 15 November 2017 - 12:50 PM

FYI...

- https://tools.cisco....cationListing.x

Cisco Voice Operating System-Based Products Unauthorized Access Vuln
- https://tools.cisco....sa-20171115-vos
2017 Nov 15 v1.0 Critical
CVE-2017-12337
Cisco Bug ID's (10)    
CSCvg22923
CSCvg55112
CSCvg55128
CSCvg55145
CSCvg58619
CSCvg64453
CSCvg64456
CSCvg64464
CSCvg64475
CSCvg68797
___

Cisco Web Security Appliance Advanced Malware Protection File Bypass Vuln
- https://tools.cisco....sa-20171115-wsa
2017 Nov 15 v1.0 Medium
CVE-2017-12303
Cisco Bug IDs: CSCvf52943
___

Cisco Umbrella Insights Virtual Appliance Static Credentials Vuln
- https://tools.cisco....sa-20171115-uva
2017 Nov 15 v1.0 Medium
CVE-2017-12350
Cisco Bug IDs: CSCvg31220
___

Cisco Unified Communications Manager SQL Injection Vuln
- https://tools.cisco....sa-20171115-ucm
CVE-2017-12302
Cisco Bug IDs: CSCvf36682
___

There are -14- additional Cisco advisories
dated Nov 15 (v1.0) listed here:
> https://tools.cisco....cationListing.x
___

Additional information:
- https://www.security....com/id/1039813
- https://www.security....com/id/1039814
- https://www.security....com/id/1039815
- https://www.security....com/id/1039816
- https://www.security....com/id/1039817

- https://www.security....com/id/1039818
- https://www.security....com/id/1039819
- https://www.security....com/id/1039820
- https://www.security....com/id/1039825
- https://www.security....com/id/1039826

- https://www.security....com/id/1039827
- https://www.security....com/id/1039828
- https://www.security....com/id/1039829
- https://www.security....com/id/1039830
- https://www.security....com/id/1039831
___

- https://www.us-cert....Security-Update
Nov 15, 2017
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 16 November 2017 - 11:26 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#318 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 29 November 2017 - 06:18 PM

FYI...

- https://tools.cisco....cationListing.x

Multiple Vulnerabilities in Cisco WebEx Recording Format and Advanced Recording Format Players
- https://tools.cisco....9-webex-players
2017 Nov 29 v1.1 Critical

- https://www.security....com/id/1039895
CVE Reference: CVE-2017-12367, CVE-2017-12368, CVE-2017-12369, CVE-2017-12370, CVE-2017-12371, CVE-2017-12372
Nov 29 2017
Impact: Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): WBS30 prior to T30.20, WBS31 prior to T31.14.1, WBS32 prior to T32.2, Meetings with client builds prior to T31.14, Meeting Server builds prior to 2.7MR3
Description: Multiple vulnerabilities were reported in Cisco WebEx Player. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can cause denial of service conditions...
The vendor has assigned bug IDs CSCve02843, CSCve02843CSCve10584, CSCve10584CSCve10591, CSCve10591CSCve10658, CSCve10658CSCve10744, CSCve10744CSCve10749, CSCve10749CSCve10762, CSCve10762CSCve10764, CSCve10764CSCve11503, CSCve11503CSCve11507, CSCve11507CSCve11532, CSCve11532CSCve11538, CSCve11538CSCve11545, CSCve11545CSCve11548, CSCve11548CSCve30208, CSCve30208CSCve30214, CSCve30214CSCve30268, CSCve30268CSCvf38060, CSCvf38060CSCvf38077, CSCvf38077CSCvf38084, CSCvf38084CSCvf49650, CSCvf49650CSCvf49697, CSCvf49697CSCvf49707, CSCvf49707CSCvf57234, CSCvf57234CSCvg54836, CSCvg54836CSCvg54843, CSCvg54843CSCvg54850, CSCvg54850CSCvg54853, CSCvg54853CSCvg54856, CSCvg54856CSCvg54861, CSCvg54861CSCvg54867, CSCvg54867CSCvg54868, CSCvg54868CSCvg54870, and CSCvg54870 to these vulnerabilities...
___

There are -19- more dated Nov 29 here:
> https://tools.cisco....cationListing.x
and -14- more dated Nov 29 here:
> https://tools.cisco....Vulnerabilities
___

Additional information:
- https://www.security....com/id/1039913
- https://www.security....com/id/1039914
- https://www.security....com/id/1039915
- https://www.security....com/id/1039917
- https://www.security....com/id/1039918

- https://www.security....com/id/1039919
- https://www.security....com/id/1039920
- https://www.security....com/id/1039921
- https://www.security....com/id/1039922
- https://www.security....com/id/1039923

- https://www.security....com/id/1039924
- https://www.security....com/id/1039925
- https://www.security....com/id/1039926
- https://www.security....com/id/1039927
- https://www.security....com/id/1039928

- https://www.security....com/id/1039929
- https://www.security....com/id/1039930
- https://www.security....com/id/1039931
- https://www.security....com/id/1039932
- https://www.security....com/id/1039936

- https://www.security....com/id/1039937
- https://www.security....com/id/1039939
- https://www.security....com/id/1039940
___

- https://www.us-cert....ecurity-Updates
2017 Nov 29
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 30 November 2017 - 07:48 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#319 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 13 December 2017 - 11:47 AM

FYI...

- https://tools.cisco....cationListing.x

Bleichenbacher Attack on TLS Affecting Cisco Products: December 2017
- https://tools.cisco....-bleichenbacher
2017 Dec 12 v1.0
CVE-2017-17428
Cisco Bug IDs: CSCvg74693

- https://www.security....com/id/1039984
CVE Reference: CVE-2017-17428
Dec 12 2017
Impact: Disclosure of system information, Disclosure of user information
Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): 4710; ACE30 module ...
Impact: A remote user can decrypt TLS session data in certain cases.
Solution: No solution was available at the time of this entry.
The vendor does not plan to issue a fix for this product...
___

- https://www.us-cert....S-Vulnerability
Dec 13, 2017

TLS implementations...
- https://www.kb.cert..../id/CHEU-AT5U6H
Date Updated: 12 Dec 2017

TLS implementations...
- https://www.kb.cert.org/vuls/id/144389
Last revised: 13 Dec 2017
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#320 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 17 January 2018 - 02:02 PM

FYI...

Cisco NX-OS Software Pong Packet DoS Vuln
- https://tools.cisco....-20180117-nx-os
2018 Jan 17 v1.0 High - "Summary: A vulnerability in the Pong tool of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability exists because the affected software attempts to free the same area of memory twice. An attacker could exploit this vulnerability by sending a pong request to an affected device from a location on the network that causes the pong reply packet to egress both a FabricPath port and a non-FabricPath port. An exploit could allow the attacker to cause a dual or quad supervisor virtual port-channel (vPC) to reload.
Note: This vulnerability is exploitable only when all of the following are true:
      The Pong tool is enabled on an affected device. The Pong tool is disabled in NX-OS by default.
     The FabricPath feature is enabled on an affected device. The FabricPath feature is disabled in NX-OS by default.
     A FabricPath port is actively monitored via a Switched Port Analyzer (SPAN) session. SPAN sessions are not configured or enabled in NX-OS by default.
    Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
Cisco Bug IDs: CSCuv98660
___

Cisco Email Security and Content Security Management Appliance Privilege Escalation Vuln
- https://tools.cisco....20180117-esasma
2018 Jan 17 v1.0 High - "Summary: A vulnerability in the administrative shell of the Cisco Email Security Appliance (ESA) and Content Security Management Appliance (SMA) could allow an authenticated, local attacker to escalate their privilege level and gain root access. The attacker has to have a valid user credential with at least a privilege level of a guest user. The vulnerability is due to an incorrect networking configuration at the administrative shell CLI. An attacker could exploit this vulnerability by authenticating to the targeted device and issuing a set of crafted, malicious commands at the administrative shell. An exploit could allow the attacker to gain root access on the device. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
Cisco Bug IDs: CSCvb34303, CSCvb35726
___

Cisco Unified Customer Voice Portal DoS Vuln
- https://tools.cisco....sa-20180117-cvp
2018 Jan 17 v1.0 High - "Summary: A vulnerability in the application server of the Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to malformed SIP INVITE traffic received on the CVP during communications with the Cisco Virtualized Voice Browser (VVB). An attacker could exploit this vulnerability by sending malformed SIP INVITE traffic to the targeted appliance. An exploit could allow the attacker to impact the availability of services and data on the device, causing a DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability..."
Cisco Bug IDs: CSCve85840
___

There are -17- other advisories listed here:
- https://tools.cisco....cationListing.x

and -5- more advisories listed here:
- https://tools.cisco....Vulnerabilities
all dated 2018 Jan 17.
___

Additional information:
- https://www.security....com/id/1040219
- https://www.security....com/id/1040220
- https://www.security....com/id/1040221
- https://www.security....com/id/1040222
- https://www.security....com/id/1040235

- https://www.security....com/id/1040236
- https://www.security....com/id/1040237
- https://www.security....com/id/1040238
- https://www.security....com/id/1040240
- https://www.security....com/id/1040242

- https://www.security....com/id/1040247
- https://www.security....com/id/1040248
- https://www.security....com/id/1040249
___

- https://www.us-cert....ecurity-Updates
2018 Jan 17
 

:ninja: :ninja: :ninja:


Edited by AplusWebMaster, 18 January 2018 - 10:32 AM.

.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.

#321 AplusWebMaster

AplusWebMaster

    AplusWebMaster

  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 22 February 2018 - 10:26 AM

FYI...

- https://tools.cisco....cationListing.x

Cisco Unified Communications Domain Manager Remote Code Execution Vuln
- https://tools.cisco....a-20180221-ucdm
2018 Feb 21 v1.0 Critical
- https://www.security....com/id/1040405
CVE Reference:  CVE-2018-0124
Feb 21 2018
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 11.5(2) ...
The vendor has assigned bug ID CSCuv67964 to this vulnerability.
Impact: A remote user can execute arbitrary code on the target system.
Solution: The vendor has issued a fix (11.5(2))...
___

Cisco Elastic Services Controller Service Portal Authentication Bypass Vuln
- https://tools.cisco....sa-20180221-esc
2018 Feb 21 v1.0 Critical
___

Cisco Elastic Services Controller Service Portal Unauthorized Access Vuln
- https://tools.cisco....a-20180221-esc1
2018 Feb 21 v1.0 High
___

Cisco Unified Customer Voice Portal Interactive Voice Response Connection DoS Vuln
- https://tools.cisco....sa-20180221-cvp
2018 Feb 21 v1.0 High
___

More dated 2018 Feb 21:
- https://www.security....com/id/1040406
- https://www.security....com/id/1040407
- https://www.security....com/id/1040408
- https://www.security....com/id/1040409
- https://www.security....com/id/1040410
- https://www.security....com/id/1040411
- https://www.security....com/id/1040412
- https://www.security....com/id/1040413
- https://www.security....com/id/1040414
___

- https://www.us-cert....ltiple-Products
2018 Feb 21
 

:ninja: :ninja: :ninja:


.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...
.




Member of ASAP and UNITE
Support SpywareInfo Forum - click the button