New User, Welcome!     Login

Next Page >>

Network Access

Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA

The following list contains some of the applications within the Cisco
ASA and Cisco PIX devices that use TLS:

  * Clientless WebVPN, SSL VPN Client, and AnyConnect Connections
  * ASDM (HTTPS) Management Sessions
  * Cut-Through Proxy for Network Access
  * TLS Proxy for Encrypted Voice Inspection

Clientless WebVPN, SSL VPN Client, and AnyConnect Connections
+------------------------------------------------------------

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Adaptive Security Appliance and Cisco PIX Security Appliances

  * Cisco Tunneling Control Protocol (cTCP) for Remote Access VPNs
  * Virtual Telnet
  * Virtual HTTP
  * Transport Layer Security (TLS) Proxy for Encrypted Voice
    Inspection
  * Cut-Through Proxy for Network Access
  * TCP Intercept

Crafted H.323 Packet DoS Vulnerability
+-------------------------------------

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances

  * Secure Socket Layer Virtual Private Network (SSL VPN)
  * When the affected device is configured to accept Cisco Adaptive
    Security Device Manager (ASDM) connections
  * TLS Proxy for Encrypted Voice Inspection
  * Cut-Through Proxy for Network Access when using HTTPS

SSL VPN (or WebVPN) is enabled with the "enable <interface name>"
command in "webvpn" configuration mode. SSL VPN is disabled by default.
The following configuration snippet provides an example of a SSL VPN
configuration.

Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances

  * SSH access to the security appliance
  * HTTPS access to the security appliance (including Cisco ASDM
    access)
  * Serial console access
  * Privileged (enable) mode access
  * Cut-through proxy for network access
  * VPN access

This vulnerability is documented in Cisco bug ID CSCte21953 and has been
assigned Common Vulnerabilities and Exposures (CVE) ID CVE-2010-0568.

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch

* CSCtf42008 - Unauthenticated Java Servlet Access

CVSS Base Score - 10
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Endpoint Devices

* CSCtb31640 - Unauthenticated CGI Access

CVSS Base Score - 10
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Remote Access VPN and SIP Vulnerabilities in Cisco PIX and Cisco ASA

CSCsq07867 - Memory corruption with traceback in SIP inspection code

CVSS Base Score - 7.8
   Access Vector - Network
   Access Complexity - Low
   Authentication - None
   Confidentiality Impact - None
   Integrity Impact - None
   Availability Impact - Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Recording Server

* CSCtf42005 - Unauthenticated Java Servlet Access

CVSS Base Score - 10
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Cisco Unified IP Phone Overflow and Denial of Service Vulnerabilities

CSCsj74818 - DNS Response Parsing Stack Overflow

CVSS Base Score - 10.0
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and ASA Appliances

The PIX and ASA security appliances are also affected by a crafted TLS
packet vulnerability that affects devices running certain 7.x software
versions if the software has one or more features configured that cause
TLS sessions to terminate on the PIX or ASA security appliance. These
functions include, but are not limited to, clientless WebVPN, HTTPS
management, cut-through proxy for network access, and TLS proxy for
encrypted voice inspection. Version 6.3.x is not affected. Features that
cause TLS sessions to terminate on the PIX and ASA security appliances
are not enabled by default. For specific affected versions, please refer
to the "Software Versions and Fixes" section.

Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities

* CSCsj80609 - Memory Leak Due to TCPFUZZ on Port 2444 (CTLProvider)

CVSS Base Score - 7.8
    Access Vector -             Network
    Access Complexity -         Low
    Authentication -            None
    Confidentiality Impact -    None
    Integrity Impact -          None
    Availability Impact -       Complete

Cisco Security Advisory: SNMP Version 3 Authentication Vulnerabilities

- -----------------------------------------------------

CVSS Base Score - 10

        Access Vector            - Network
        Access Complexity        - Low
        Authentication           - None
        Confidentiality Impact   - Complete
        Integrity Impact         - Complete
        Availability Impact      - Complete

Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities

* CSCsj80609 - Memory Leak Due to TCPFUZZ on Port 2444 (CTLProvider)

CVSS Base Score - 7.8
    Access Vector -             Network
    Access Complexity -         Low
    Authentication -            None
    Confidentiality Impact -    None
    Integrity Impact -          None
    Availability Impact -       Complete

Cisco Security Advisory: Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine

                            and appliance 

CVSS Base Score - 10

 Access Vector           - Network
 Access Complexity       - Low
 Authentication          - None
 Confidentiality Impact  - Complete
 Integrity Impact        - Complete
 Availability Impact     - Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified Communications Manager

* CSCth39586 ("Core dump when processing certain SIP packets")

CVSS Base Score - 7.8
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   None
    Integrity Impact -         None
    Availability Impact -      Complete

Cisco Security Advisory: CiscoWorks Common Services Arbitrary Command Execution Vulnerability

* CSCtq48990 - CiscoWorks Arbitrary Command Execution Vulnerability

CVSS Base Score - 9.0
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           Single
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Network Building Mediator

Default credentials
+------------------

Default credentials are assigned for several predefined user accounts
on the device including the administrative user account. Any user
with network access to the device can log in as an administrator and
take complete control over the vulnerable device.

  * CSCtb83495 ( registered customers only) has been assigned the CVE
    identifier CVE-2010-0595.

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Firewall Services Module

+---------------------------------------------------

Devices running vulnerable versions of Cisco FWSM Software are
affected by this vulnerability if they are configured to use
Authentication, Authorization, and Accounting (AAA) for network
access, also known as cut-through or authentication proxy. The
network access authentication feature is enabled if the aaa
authentication match or aaa authentication include commands are
present in the configuration of an affected device.

TACACS+ Authentication Bypass Vulnerability

Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA

The following Cisco ASA features use the services the crypto accelerator
provides, and therefore may be affected by this vulnerability:

  * Clientless WebVPN, SSL VPN Client, and AnyConnect Connections
  * ASDM (HTTPS) Management Sessions
  * Cut-Through Proxy for Network Access
  * TLS Proxy for Encrypted Voice Inspection
  * IP Security (IPsec) Remote Access and Site-to-site VPNs
  * Secure Shell (SSH) Access

This vulnerability is documented in Cisco Bug ID CSCsj25896 and has

Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities

* CSCtd10712 ("NAT LDAP Vulnerability")

CVSS Base Score - 7.8
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   None
    Integrity Impact -         None
    Availability Impact -      Complete

Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities

CSCtc38985 - CCM Coredump on SCCP StationCapabilitiesRes Message with MaxCap Exceeded

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities

* CSCtf97162 - CCM Application Restarts During TCP Flood

CVSS Base Score - 7.8
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   None
    Integrity Impact -         None
    Availability Impact -      Complete

Cisco Security Advisory: Cisco Unified Communications Manager Denial of Service Vulnerabilities

CSCsi46466 - CM 6.1 SDL router services dead when receiving abnormal

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

Cisco Security Advisory: Cisco ACE Application Control Engine Device Manager and Application Networking Manager Vulnerabilities

* ACE Device Manager invalid directory permissions (CSCsv66063)

CVSS Base Score - 9.0
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           Single
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Open Query Interface in Cisco Unified Communications Manager and Cisco Unified Presence Server

* CSCti81574 - Open Query Interface

CVSS Base Score - 10.0
    Access Vector -            Network
    Access Complexity -        Low
    Authentication -           None
    Confidentiality Impact -   Complete
    Integrity Impact -         Complete
    Availability Impact -      Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers

+-----------------------------------------------------

CVSS Base Score - 7.8

        Access Vector            - Network
        Access Complexity        - Low
        Authentication           - None
        Confidentiality Impact   - None
        Integrity Impact         - None
        Availability Impact      - Complete

Cisco Security Advisory: Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine

CSCta85227, CSCtg14858 - RTSP Inspection DoS Vulnerability

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

Cisco Security Advisory: Cisco RVS4000 and WRVS4400N Web Management Interface Vulnerabilities

Details
=======

The Cisco RVS4000 and WRVS4400N Gigabit Security Routers deliver
high-speed network access and IPsec VPN capabilities for small
businesses. They also provides firewall and intrusion prevention
capabilities.

The Cisco RVS4000 and WRVS4400N Gigabit Security Routers contain
three web management interface vulnerabilities:

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Unified MeetingPlace

CSCtc39691 - Insufficient validation of SQL commands

CVSS Base Score - 9

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - Partial
Integrity Impact        - Partial
Availability Impact     - Complete

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Wireless LAN Controllers

CSCta56653 - WLC may reload when receiving crafted IKE packets

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete
Next Page>>

Copyright © 1995-2013 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!