> metrics. It provides 17 modules like Visibility Audit, Trust
> Verification, Property Validation, and Competitive Intelligence
> Scouting, each which describes multiple attacks (called Tasks), for 5
> different interaction types with a target (called Channels) organized by
> technical knowledge and equipment requirements as Human, Physical,
> Telecommunications, Data Networks, and Wireless. An example attack task
> under the Wireless Channel for Trust Verification states, “Test and
> document the depth of requirements for access to wireless devices within
> the scope with the use of fraudulent credentials.” As if that wasn’t
> already deep, it even waxes security philosophy with things like,
> “Compliance requirements which enforce protection measures as a
thinking, and trust metrics. It provides 17 modules like Visibility
Audit, Trust Verification, Property Validation, and Competitive
Intelligence Scouting, each which describes multiple attacks (called
Tasks), for 5 different interaction types with a target (called
Channels) organized by technical knowledge and equipment requirements
as Human, Physical, Telecommunications, Data Networks, and Wireless.
An example attack task under the Wireless Channel for Trust
Verification states, “Test and document the depth of requirements for
access to wireless devices within the scope with the use of fraudulent
credentials.” As if that wasn’t already deep, it even waxes security
philosophy with things like, “Compliance requirements which enforce
The Cisco Content Services Gateway - Second Generation (CSG2) provides
intelligent network capabilities such as flexible policy management
and billing based on deep-packet inspection, as well as subscriber and
application awareness capabilities that enable mobile operators to
quickly and easily offer value-added, differentiated services over their
mobile data networks.
The service policy bypass vulnerability affects configurations that
allow end users to first access non-accounted or billed sites. After a
user accesses a non-accounted site, it is possible to access other sites
that are defined by a billing service policy or to access sites that may
Transport Layer Security (TLS) Denial of Service Vulnerabilities
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
TLS and its predecessor, SSL, are cryptographic protocols that
provide security for communications over IP data networks such as the
Internet.
Three vulnerabilities exist on the Cisco ASA security appliances that
can be triggered by a series of crafted TLS packets. An
unauthenticated attacker may cause the affected device to reload. A
The Cisco Content Services Gateway: Second Generation provides
intelligent network capabilities such as flexible policy management
and billing based on deep-packet inspection, as well as subscriber
and application awareness capabilities that enable mobile operators
to quickly and easily offer value-added, differentiated services over
their mobile data networks.
A DoS vulnerability exists in the Cisco Content Services Gateway:
Second Generation could allow an unauthenticated attacker to cause a
device reload by sending crafted ICMP messages to the affected
device.
Overview:
Treo Smartphones running the Palm OS are vulnerable to a
remote Denial of Service attack while connected to data
networks allowing inbound ICMP traffic. It is possible for
an attacker to launch this attack from the Internet by sending
specially crafted ICMP requests at the targeted phone's
assigned IP address.
Details:
method for point-to-point connections between remote users and a
central network.
PPTP is a network protocol that enables the secure transfer of data
from a remote client to a private enterprise server by creating a
VPDN across TCP/IP-based data networks. PPTP supports on-demand,
multiprotocol, virtual private networking over public networks, such
as the Internet.
Details regarding the two known vulnerabilities in Cisco IOS devices
that are running affected versions of system software follow:
Details
=======
TLS and its predecessor, SSL, are cryptographic protocols that provide
security for communications over IP data networks such as the Internet.
An industry-wide vulnerability exists in the TLS protocol that could
impact any Cisco product that uses any version of TLS and SSL. The
vulnerability exists in how the protocol handles session renegotiation
and exposes users to a potential man-in-the-middle attack.
