Thursday, 03 July 2008
Cisco IOS devices may crash while processing malformed Secure Sockets Layer (SSL) packets. In order to trigger these vulnerabilities, a malicious client must send malformed packets during the SSL protocol exchange with the vulnerable device. |
|
Read more...
|
|
Wednesday, 10 January 2007
Cisco Unified Contact Center Enterprise, Cisco Unified Contact Center Hosted, Cisco IP Contact Center Enterprise, and Cisco IP Contact Center Hosted editions are affected by a vulnerability that may result in the restart of JTapi Gateway process. Until this process restarts, no... |
|
Read more...
|
|
Wednesday, 10 January 2007
A vulnerability exists in the Data-Link Switching (DLSw) feature within Cisco IOS software where an invalid value in a DLSw capabilities exchange message may result in a crash of the affected device and repeated attempts to exploit this vulnerability could result in a sustained... |
|
Read more...
|
|
Wednesday, 10 January 2007
A vulnerability exists in the Data-link Switching (DLSw) feature in Cisco IOS where an invalid value in a DLSw message could result in a reload of the DLSw device. Successful exploitation of this vulnerability requires that an attacker be able to establish a DLSw connection to... |
|
Read more...
|
|
Friday, 05 January 2007
Certain versions of Cisco Secure Access Control Server (ACS) for Windows and the Cisco Secure ACS Solution Engine (here after both referred to as purely Cisco Secure ACS) are affected by multiple vulnerabilities that cause specific Cisco Secure services to crash. Two of the... |
|
Read more...
|
|
Wednesday, 03 January 2007
Cisco Clean Access (CCA) is a software solution that can automatically detect, isolate, and clean infected or vulnerable devices that attempt to access your network. It consists of Cisco Clean Access Manager (CAM) and Cisco Clean Access Server (CAS) devices that work in tandem.... |
|
Read more...
|
|
Wednesday, 08 November 2006
Cisco Secure Desktop (CSD) software is affected by three vulnerabilities that may: - Cause information produced and accessed during an Internet browsing session to be left behind on a computer after an SSL VPN session terminates. - Allow users to evade the system policy that... |
|
Read more...
|
|
Wednesday, 01 November 2006
Cisco Security Agent Management Center (CSAMC) contains an administrator authentication bypass vulnerability when configured to use an external Lightweight Directory Access Protocol (LDAP) server for authentication. There is a workaround for this vulnerability. Cisco has made... |
|
Read more...
|
|
Wednesday, 25 October 2006
Cisco Security Agent (CSA) for Linux contains a denial of service vulnerability involving port scans. By performing a port scan against a system running a vulnerable version of CSA, it is possible to cause the system to become unresponsive. Cisco Unified CallManager (CUCM) and... |
|
Read more...
|
|
Thursday, 12 October 2006
The Cisco Wireless Location Appliance software contains a default password for the 'root' administrative account. A user who logs in using this username has complete control of the device. |
|
Read more...
|
|
Monday, 09 October 2006
Cisco has been made aware of limitations in the Cisco Secure Desktop (CSD) product which may cause information accessed or produced during an SSL VPN session to be left outside of the Secure Desktop environment. |
|
Read more...
|
|
Wednesday, 20 September 2006
A vulnerability in the Cisco Guard may enable an attacker to send a web browser client to a malicious website with the use of Cross Site Scripting (XSS) when the Guard is providing anti-spoofing services between the web browser client and a webserver. The attacker may exploit... |
|
Read more...
|
|
Wednesday, 20 September 2006
Cisco Intrusion Prevention System (IPS) software contains a denial of service vulnerability in web administration interface involving malformed Secure Socket Layer (SSL) packets and a fragmented packet evasion vulnerability. |
|
Read more...
|
|
Wednesday, 20 September 2006
A vulnerability exists in certain Cisco IOS software release trains running on the Cisco IAD2400 series, 1900 Series Mobile Wireless Edge Routers and Cisco VG224 Analog Phone Gateways. Vulnerable versions may contain a default hard-coded Simple Network Management Protocol (SNMP)... |
|
Read more...
|
|
Wednesday, 23 August 2006
The Cisco VPN 3000 series concentrators are affected by two vulnerabilities when file management via File Transfer Protocol (FTP) is enabled that could allow authenticated or unauthenticated attackers to execute certain FTP commands and delete files on the concentrator. |
|
Read more...
|
|
Whether you're in need of a simple file-sharing solution or a solution for a standard nation-wide remote access solution, we can determine the solution best meets your needs, and implement it. 
Vendor Advisories 