Cisco advisories/updates

Welcome! Register for a free account (or login) > How does it work?

Cisco advisories/updates

Options

AplusWebMaster View Member Profile	Jan 24 2008, 05:40 AM Post #1
AplusWebMaster Group: Authentic Member Posts: 4,576 Joined: 30-December 03 From: USA Member No.: 1,643 Operating System: XP/SP3	FYI... "Cisco has released two updates to their products to address low to medium severity risks." - http://atlas.arbor.net/briefs/index#-569328674 January 23, 2008 Title: Cisco PIX and ASA Time-to-Live Vulnerability Severity: Elevated Severity ( http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0028 ) > http://www.cisco.com/en/US/products/produc...08093942e.shtml Title: Cisco Default Passwords in the Application Velocity System Severity: Normal Severity ( http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0029 ) > http://www.cisco.com/en/US/products/produc...080939431.shtml - http://isc.sans.org/diary.html?storyid=3878 Last Updated: 2008-01-24 01:17:54 UTC - http://www.us-cert.gov/current/#cisco_rele..._advisories_to3 January 23, 2008 . This post has been edited by AplusWebMaster: Jun 10 2008, 02:32 PM

Replies

AplusWebMaster View Member Profile	Jun 10 2008, 02:22 PM Post #2
AplusWebMaster Group: Authentic Member Posts: 4,576 Joined: 30-December 03 From: USA Member No.: 1,643 Operating System: XP/SP3	FYI... SNMP v3 authentication vuln - http://www.cisco.com/warp/public/707/cisco...3.shtml#summary 2008 June 10 - "...Multiple Cisco products contain either of two authentication vulnerabilities in the Simple Network Management Protocol version 3 (SNMPv3) feature. These vulnerabilities can be exploited when processing a malformed SNMPv3 message. These vulnerabilities could allow the disclosure of network information or may enable an attacker to perform configuration changes to vulnerable devices. The SNMP server is an optional service that is disabled by default in Cisco products. Only SNMPv3 is impacted by these vulnerabilities. Workarounds are available.."

Posts in this topic

AplusWebMaster Cisco advisories/updates Jan 24 2008, 05:40 AM

AplusWebMaster FYI... - http://atlas.arbor.net/briefs/ Title: C... Feb 14 2008, 11:08 PM

AplusWebMaster FYI... Cisco security advisory overview - http://... Mar 27 2008, 05:31 AM

AplusWebMaster FYI... Cisco Unified Communications Manager, form... May 14 2008, 12:33 PM

AplusWebMaster FYI... - http://www.us-cert.gov/current/#cisco_re... May 22 2008, 03:42 PM

AplusWebMaster FYI... - http://isc.sans.org/diary.html?storyid=4... Jun 4 2008, 07:01 PM

AplusWebMaster FYI... SNMP v3 authentication vuln - http://www.c... Jun 10 2008, 02:22 PM

AplusWebMaster FYI... Cisco IPS vuln - update available - http:/... Jun 19 2008, 03:58 AM

AplusWebMaster FYI... Multiple Cisco Products DoS vuln - http://... Jul 3 2008, 04:40 AM

AplusWebMaster FYI... Multiple Cisco Products Vulnerable to DNS ... Jul 9 2008, 10:53 PM

AplusWebMaster FYI... Multiple Cisco Products Vulnerable to DNS ... Aug 5 2008, 03:53 PM

AplusWebMaster FYI... WebEx Meeting Mgr... - http://www.cisco.co... Aug 18 2008, 06:34 AM

AplusWebMaster FYI... Cisco WebEx Meeting Manager Drive-By Explo... Aug 25 2008, 05:52 AM

AplusWebMaster FYI... Cisco ASA and PIX multiple vulns - http://... Sep 4 2008, 02:22 PM

AplusWebMaster FYI... Cisco - multiple alerts - http://www.us-ce... Sep 24 2008, 01:32 PM

AplusWebMaster FYI... Cisco Releases Security Advisory for IronP... Jan 15 2009, 11:11 AM

AplusWebMaster FYI... Cisco Security Manager vuln - update avail... Jan 21 2009, 04:16 PM

AplusWebMaster FYI... Cisco wireless LANs multiple vulns - updat... Feb 4 2009, 03:06 PM

AplusWebMaster FYI... Cisco Security Advisory - multiple vulns..... Feb 27 2009, 05:17 AM

AplusWebMaster FYI... Cisco 7600 Router DoS vuln - update availa... Mar 7 2009, 10:11 AM

AplusWebMaster FYI... - http://isc.sans.org/diary.html?storyid=5... Mar 10 2009, 04:52 AM

AplusWebMaster FYI... Cisco Unified Communications Manager IP Ph... Mar 17 2009, 05:21 AM

AplusWebMaster FYI... Cisco IOS bundled advisories... - http://w... Mar 25 2009, 04:42 PM

AplusWebMaster FYI... Cisco ASA and PIX multiple vulns - update ... Apr 9 2009, 05:25 AM

AplusWebMaster FYI... CiscoWorks TFTP vuln - update available - ... May 21 2009, 03:44 AM

AplusWebMaster FYI... Cisco IOS - HTTP Server vuln - http://www.... Jun 24 2009, 01:19 PM

AplusWebMaster FYI... Cisco IOS vulns... - http://www.cisco.com/... Jul 30 2009, 09:11 AM

AplusWebMaster FYI... Cisco firewall vuln - update available - h... Aug 20 2009, 04:49 AM

AplusWebMaster FYI... > http://atlas.arbor.net/briefs/index#-... Aug 26 2009, 08:02 AM

AplusWebMaster FYI... Cisco: TCP State Manipulation DoS vulns - ... Sep 9 2009, 06:41 AM

AplusWebMaster FYI... Cisco IOS multiple vulns - updates availab... Sep 24 2009, 04:15 AM

AplusWebMaster FYI... Cisco WebEx WRF Player vulns - http://www.... Dec 16 2009, 10:59 PM

AplusWebMaster FYI... Cisco IOS / DoS vuln - update available - ... Jan 23 2010, 08:31 AM

AplusWebMaster FYI... Cisco Unified MeetingPlace - multiple vuln... Jan 28 2010, 07:43 AM

AplusWebMaster FYI... Cisco Secure Desktop vuln - update availab... Feb 2 2010, 08:34 AM

AplusWebMaster FYI... Cisco releases multiple Security Advisorie... Feb 17 2010, 04:42 PM

AplusWebMaster FYI... Cisco - multiple advisories... - http://ww... Mar 4 2010, 06:37 AM

Topic Title	Replies	Topic Starter	Views	Last Action
Security advisories and vulnerabilities info Multiple AV vendor vulns / updates / issues	70	AplusWebMaster	8,751	Yesterday, 11:25 PM Last post by: AplusWebMaster
Updates To Software Firefox updates	36	AplusWebMaster	4,662	Yesterday, 05:42 AM Last post by: AplusWebMaster
Security advisories and vulnerabilities info MS Security Advisories 12	173	AplusWebMaster	26,344	19th March 2010 - 10:04 AM Last post by: AplusWebMaster
Microsoft Windows™ Windows Automatic Updates not working	37	boghog	712	16th March 2010 - 03:40 PM Last post by: boghog