http://www.dslreports.com/forum/r18355424 en Thu, 21 Aug 2008 04:41:17 EDT Thu, 21 Aug 2008 04:41:17 EDT http://www.dslreports.com/forum/remark,19444125 tdoran : Title: Updated Cisco Field Notice: FN - 62884 - Cisco VPN Client Version 5.0.01.0600 Non MSI Installer Pulled From CCO

URL:
»www.cisco.com/en/US/customer/pro···2f.shtml

Update Posted: August 28, 2007

Summary of Updates: Entire content was changed including the title.
]]> http://www.dslreports.com/forum/remark,19444125 Wed, 14 Nov 2007 16:56:01 EDT http://www.dslreports.com/forum/remark,19444120 tdoran : Title: Cisco Field Notice: FN - 62868 - New Zealand Daylight Savings Time Policy Changes Effective September 2007 For Cisco Unity

URL:
»www.cisco.com/en/US/customer/pro···1a.shtml

Posted: August 27, 2007

Summary: On 30 April 2007, Hon Rick Barker, Minister of Internal Affairs, announced a three week extension to the period of daylight saving. Daylight saving now runs from the last Sunday in September until the first Sunday in April.
]]> http://www.dslreports.com/forum/remark,19444120 Wed, 14 Nov 2007 16:55:06 EDT http://www.dslreports.com/forum/remark,19444112 tdoran : Title: Cisco Field Notice: FN - 62889 - New Zealand Daylight Savings Time Policy Changes Effective September 2007 For Cisco PSTN Gateway (PGW2200)

URL:
»www.cisco.com/en/US/customer/pro···45.shtml

Posted: August 27, 2007

Summary: On April 30th, 2007, the Minister of Internal Affairs issued a statement regarding a change in Daylight Savings Time policy for New Zealand. The change in policy has modified the start and end dates for DST. Beginning in 2007 and beyond, Daylight Savings Time in New Zealand will start on the last Sunday of September at 2 AM local time and end on the first Sunday of April at 3 AM local time.
]]> http://www.dslreports.com/forum/remark,19444112 Wed, 14 Nov 2007 16:53:39 EDT http://www.dslreports.com/forum/remark,19444103 tdoran : Title: Cisco Field Notice: FN - 62882 - Router Out-of-Sync Condition in Cisco Unified Contact Center and Unified Intelligent Contact Management Enterprise and Hosted Products

URL:
»www.cisco.com/en/US/customer/pro···1a.shtml

Posted: August 27, 2007

Summary: In a duplexed ICM environment, the ICM Router may, under rare circumstances, become out-of-sync with its peer. The main trigger for this event is a failed data checksum comparison between the RouterA and RouterB.
]]> http://www.dslreports.com/forum/remark,19444103 Wed, 14 Nov 2007 16:52:06 EDT http://www.dslreports.com/forum/remark,19444100 tdoran : Title: Cisco Security Response: Multiple SIP Vulnerabilities in the Cisco 7960 IP Phones

URL:
»www.cisco.com/en/US/customer/pro···693.html
(available to registered users)

»www.cisco.com/en/US/products/pro···693.html
(available to non-registered users)

Posted: August 21, 2007

Summary: This is the Cisco PSIRT response to an issue discovered and reported to Cisco by Radu State, Humberto J. Abdelnur and Olivier Festor regarding two Session Initiation Protocol (SIP) vulnerabilities in the Cisco 7940/7960 IP Phones.

The original reports are available at the following links:

»archives.neohapsis.com/archives/···385.html

»archives.neohapsis.com/archives/···386.html

We greatly appreciate the opportunity to work with researchers on security vulnerabilities, and welcome the opportunity to review and assist in product reports.

Cisco has confirmed the following: This issue is documented as Cisco bug ID CSCsi68191.

Cisco IP Phone 7940/7960 SIP firmware versions prior to 8.7(0) are vulnerable to the denial of service attacks detailed in the reports. Firmware versions 8.7(0) and later are not vulnerable to this issue. Version 8.7(0) firmware images for Cisco IP 7940/7960 phones can be obtained here:

»www.cisco.com/pcgi-bin/tablebuil···dcat20e2 (registered customers only)
]]> http://www.dslreports.com/forum/remark,19444100 Wed, 14 Nov 2007 16:50:43 EDT http://www.dslreports.com/forum/remark,19444089 tdoran : Title: Updated Cisco Field Notice: FN - 62850 - MCS 7825-H2 Running Cisco Unified Communications Manager 5.1 and 6.0 or Cisco Unified Presence 6.0 - Sporadic Server Hang

URL:
»www.cisco.com/en/US/customer/pro···a6.shtml
(available to registered users)

Update Posted: August 22, 2007

Summary of Updates:

Added Update 08/21/2007 to Workaround/Solution section with links
to 5.1 and 6.0 software.
]]> http://www.dslreports.com/forum/remark,19444089 Wed, 14 Nov 2007 16:49:01 EDT http://www.dslreports.com/forum/remark,19444068 tdoran : Title: Cisco Field Notice: FN - 62884 - PSIRT On All .exe Versions of VPN Client

URL:
»www.cisco.com/en/US/customer/pro···2f.shtml
(available to registered users)

Posted: August 21, 2007

Summary: Two vulnerabilities exist in the Cisco VPN Client for Microsoft Windows that may allow unprivileged users on machines with the client installed to elevate their rivileges to LocalSystem privileges.

A Cisco Security Advisory was published on August 15, 2007 to disclose these vulnerabilities.
]]> http://www.dslreports.com/forum/remark,19444068 Wed, 14 Nov 2007 16:45:50 EDT http://www.dslreports.com/forum/remark,18910327 tdoran : Title: Updated Cisco Field Notice: FN - 62784 - GSR PRP-1 and PRP-2 - Unable To Read Compact Flash Disk and/or ATA Flash Disk (1 GB CF, 1GB FD) - Data Loss, System Boot Hang -Replace Flash Card - Umpire Upgrade Available

URL:
»www.cisco.com/en/US/customer/pro···07.shtml
(available to registered users)

Update Posted: July 19, 2007

Summary of Updates:

Added example output to Remote Identification of 1 GB PCMCIA disks section in the How to Identify Hardware Levels section.
]]> http://www.dslreports.com/forum/remark,18910327 Mon, 20 Aug 2007 05:42:09 EDT http://www.dslreports.com/forum/remark,18818246 tdoran : Title: Cisco Field Notice: FN - 62850 - MCS 7825-H2 Running Cisco Unified Communications Manager 5.1 or Cisco Unified Presence 6.0 - Sporadic Server Hang

URL:
»www.cisco.com/en/US/customer/pro···a6.shtml
(available to registered users)

Posted: July 19, 2007

Summary: The MCS7825-H2 and the HP equivalent HP DL320-G4 are currently experiencing unexpected behavior on Cisco Unified Communications Manager 5.1(x), Cisco Unified Communications Manager 6.0(x) and/or Cisco Unified Presence 6.0(x) whereby the server becomes unresponsive for a duration of time. If that time exceeds ten minutes, a system failsafe timer will cause the server to reboot and then the system will return to normal operation. This error can recur on the same server more than once.
]]> http://www.dslreports.com/forum/remark,18818246 Mon, 06 Aug 2007 06:50:54 EDT http://www.dslreports.com/forum/remark,18703675 tdoran : Title: Cisco Security Advisory: Denial of Service Vulnerability in Cisco Wide Area Application Services (WAAS) Software

URL:
»www.cisco.com/en/US/customer/pro···10.shtml
(available to registered users)

»www.cisco.com/en/US/products/pro···10.shtml
(available to non-registered users)

Posted: July 18, 2007

Summary: The Cisco Wide Area Application Services (WAAS) software contains a denial of service (DoS) vulnerability that may cause some devices that run WAAS software (WAE appliance and NM-WAE-502 module) to stop processing all types of traffic, including data traffic and management traffic. This condition may occur if a device running WAAS software is configured for Edge Services, which utilizes Common Internet File System (CIFS) optimization and receives a flood of TCP SYN packets on port 139 or 445.

Cisco has made free software available to address this vulnerability for affected customers. Workarounds are available to mitigate the effects of this vulnerability.
]]> http://www.dslreports.com/forum/remark,18703675 Thu, 19 Jul 2007 11:07:17 EDT http://www.dslreports.com/forum/remark,18696268 tdoran : (Cisco IOS Software Releases 12.0 Special and Early Deployments) Field Notice: *Expired* FN - 11211 - Cisco IOS Deferral for Catalyst 6xxx 12.0XE Images

»www.cisco.com/en/US/products/hw/···ef.shtml]]> http://www.dslreports.com/forum/remark,18696268 Wed, 18 Jul 2007 11:54:48 EDT http://www.dslreports.com/forum/remark,18696258 tdoran : (Cisco Catalyst 8500 Series Campus Switch Routers) Field Notice: *Expired* FN - 10671 - Boot Flash Memory Size Too Small for Next Feature Release of Catalyst 8540 CSR IOS

»www.cisco.com/en/US/products/hw/···ca.shtml]]> http://www.dslreports.com/forum/remark,18696258 Wed, 18 Jul 2007 11:53:38 EDT http://www.dslreports.com/forum/remark,18696246 tdoran : (Cisco Catalyst 2950 Series Switches) Field Notice: *Expired* FN - 62326 - C2950SX Switches May Fail to Link on the 1000Base-SX Port

»www.cisco.com/en/US/products/hw/···25.shtml]]> http://www.dslreports.com/forum/remark,18696246 Wed, 18 Jul 2007 11:52:42 EDT http://www.dslreports.com/forum/remark,18696213 tdoran : (Cisco Unified Intelligent Contact Management Enterprise) Field Notice: FN - 62849 - Cisco Enterprise and Hosted Contact Center Products Notice for Microsoft July 2007 Security Updates

»www.cisco.com/en/US/products/sw/···93.shtml]]> http://www.dslreports.com/forum/remark,18696213 Wed, 18 Jul 2007 11:48:16 EDT http://www.dslreports.com/forum/remark,18696207 tdoran : (Cisco CRS Series Routers) Field Notice: FN - 62526 CRS16 and CRS8 - RP, RP-B and DRP-PLIM Flash Disks Can Fail in a Power Cycle Event - Fix: RMA the Flash Disk

»www.cisco.com/en/US/products/ps5···2e.shtml]]> http://www.dslreports.com/forum/remark,18696207 Wed, 18 Jul 2007 11:47:19 EDT http://www.dslreports.com/forum/remark,18696200 tdoran : (Cisco Catalyst 6500 Series Switches) Field Notice: *Expired* FN - 62466 - A Timing Issue on the MEM-C6K-ATA-1-64M= Device May Render the Flash Card Inaccessible with a Supervisor2 for Normal Read/Write Operations - Fix On Failure

»www.cisco.com/en/US/products/hw/···74.shtml]]> http://www.dslreports.com/forum/remark,18696200 Wed, 18 Jul 2007 11:46:30 EDT http://www.dslreports.com/forum/remark,18664470 tdoran : Title: Cisco Security Advisory: Cisco Unified Communications Manager and Presence Server Unauthorized Access Vulnerabilities

URL:
»www.cisco.com/en/US/customer/pro···89.shtml
(available to registered users)

»www.cisco.com/en/US/products/pro···89.shtml
(available to non-registered users)

Posted: July 11, 2007

Summary: Cisco Unified Communications Manager (CUCM), formerly CallManager, and Cisco Unified Presence Server (CUPS) contain two vulnerabilities that could allow an unauthorized administrator to activate and terminate CUCM / CUPS system services and access SNMP configuration information. This may respectively result in a denial of service (DoS) condition affecting CUCM/CUPS cluster systems and the disclosure of sensitive SNMP details, including community strings.

There are no workarounds for these vulnerabilities.

Cisco has made free software available to address these vulnerabilities for affected customers.
]]> http://www.dslreports.com/forum/remark,18664470 Fri, 13 Jul 2007 11:05:30 EDT http://www.dslreports.com/forum/remark,18664456 tdoran : Title: Cisco Security Advisory: Cisco Unified Communications Manager Overflow Vulnerabilities

URL:
»www.cisco.com/en/US/customer/pro···88.shtml
(available to registered users)

»www.cisco.com/en/US/products/pro···88.shtml
(available to non-registered users)

Posted: July 11, 2007

Summary: Cisco Unified Communications Manager (CUCM), formerly CallManager, contains two overflow vulnerabilities that could allow a remote, unauthenticated user to cause a denial of service (DoS) condition or execute arbitrary code.

A workaround exists for one of the vulnerabilities.

Cisco has made free software available to address these vulnerabilities for affected customers.
]]> http://www.dslreports.com/forum/remark,18664456 Fri, 13 Jul 2007 11:02:26 EDT http://www.dslreports.com/forum/remark,18664451 tdoran : Title: Cisco Field Notice: FN - 62839 - Windows 2003 With SP2 - System Freezes With Blue Screen When Running CSA and Some Hardware

URL:
»www.cisco.com/en/US/customer/pro···6a.shtml
(available to registered users)

Posted: July 10, 2007

Summary: Any machine running the Microsoft Network Chimney patch with supported hardware (confirmed issue with supported Broadcom NICs) may experience a system freeze with blue screen when running Cisco Security Agent (CSA) and Windows 2003 Service Pack 2. ]]> http://www.dslreports.com/forum/remark,18664451 Fri, 13 Jul 2007 11:01:09 EDT http://www.dslreports.com/forum/remark,18645112 tdoran : Field Notice: *Expired* FN - 62443 - CiscoWorks Common Services 2.2 VeriSign Certificate Expires June 30, 2006 - Patches With New Certificate Available

Document ID: 70447

Revised July 6, 2007
June 9, 2006

URL:
»www.cisco.com/en/US/products/sw/···61.shtml
(available to registered users)

NOTICE:
THIS FIELD NOTICE HAS BEEN ARCHIVED AND IS NO LONGER MAINTAINED OR UPDATED BY CISCO.

Problem Description

CiscoWorks Common Services 2.2 uses a VeriSign Certificate to sign jar files that are downloaded to the client machine. The certificate currently in use expires on June 30, 2006 and must be renewed.

Background

The signed jar files are downloaded to the CiscoWorks client machine when accessed from a browser using the Java Plug-in.

Problem Symptoms

When the certificate expires, launching applet based pages will cause the browser to pop-up a certification expiry message. The user can continue to work by clicking on the 'OK' button.

Workaround/Solution

Patches for CiscoWorks Common Services 2.2 are available for download for both Solaris and Windows platforms. These patches contain jar files signed with a new 3 year security certificate.

Visit the CiscoWorks CD One Patches (Strong Crypto) (registered customers only) page to download appropriate patches and readme files.

Solaris:

cwcs2.2-sol-CSCse127781-K9.tar

cwcs2.2-sol-CSCse127781.readme

Windows:

cwcs2.2-win-CSCse127781-K9.tar

cwcs2.2-win-CSCse127781.readme

Alternately, LMS2.2 customers may download the LMS bundle level patch and readme posted at the CiscoWorks LAN Management Solution Software Download (registered customers only) page.

Solaris:

lms22-sol-CSCse190840-k9.tar

lms22-sol-CSCse190840.readme

Windows:

lms22-win-CSCse190840-k9.zip

lms22-win-CSCse190840.readme

If the LMS2.2 patch is installed, it is not required to install the Common Services patch separately.]]> http://www.dslreports.com/forum/remark,18645112 Tue, 10 Jul 2007 11:39:29 EDT http://www.dslreports.com/forum/remark,18633537 tdoran : Message Type : Field Notice Update

Title: Updated Cisco Field Notice: FN - 62573 - Routers (AS5350XM, AS5400XM, C180X, C181X, C1841, IAD2400, C2691, C2800NM, C2801, C3725, C3745, C3800, VG224) Unable to
Read Compact Flash - ROMMON Upgrade Available

URL:
»www.cisco.com/en/US/customer/pro···01.shtml
(available to registered users)

Update Posted: July 2, 2007

Summary of Updates:

Added the following to Products Affected section:

CISCO1802W-AG-E/K9
CISCO1803W-AG-E/K9
CISCO2801-ADSL/K9
CISCO2801-SEC/K9
]]> http://www.dslreports.com/forum/remark,18633537 Sun, 08 Jul 2007 13:14:41 EDT http://www.dslreports.com/forum/remark,18574058 tdoran : Title: Updated Cisco Field Notice: FN - 62586 - 15454-SA-HD and 15454-SA-HD-DDR Shelf Assemblies Have Incorrect Power Filter Capacitor

URL:
»www.cisco.com/en/US/customer/pro···48.shtml
(available to registered users)

Update Posted: June 19, 2007

Summary of Updates:

Updated Background section with additional note regarding inspection process.

]]> http://www.dslreports.com/forum/remark,18574058 Wed, 27 Jun 2007 06:19:25 EDT http://www.dslreports.com/forum/remark,18531930 tdoran : Title: Cisco Field Notice: FN - 62814 - CRS - MSCs and CRS-16-RPs Can Encounter Cache Parity Errors, Which May Cause Board Resets - Replacement Program Available

URL:
»www.cisco.com/en/US/customer/pro···ef.shtml
(available to registered users)

Posted: June 18, 2007

Summary: Cisco has identified boards built between August 1, 2006 and May 1, 2007 to have a higher susceptibility to cache parity errors. Analysis has shown that the expected failure rate for these boards is around one percent. Detailed failure analysis has determined that these failures are related to a batch of processors used on the boards built in that time frame. As a result, a new processor has been certified for the CRS-MSC.

The CRS-16-RP replacement will be the CRS-16-RP-B, which already uses the new processor. Additionally, the manufacturing test process for the processor vendor has been enhanced to capture cache parity errors. ]]> http://www.dslreports.com/forum/remark,18531930 Tue, 19 Jun 2007 08:47:51 EDT http://www.dslreports.com/forum/remark,18526003 tdoran : Title: Cisco Field Notice: FN - 62823 - ONS-XC-10G-S1 XFP Y Cable Protection Does
Not Work Properly With a Specific Brand of XFP

URL:
»www.cisco.com/en/US/customer/pro···3b.shtml
(available to registered users)

Posted: June 14, 2007

Summary: The ONS-XC-10G-S1 XFPs used on the MSTP 10GE TXPs with a part number of
10-2012-01 and a serial number starting with ECL shows an anomalous behavior in
Y-cable configuration.
]]> http://www.dslreports.com/forum/remark,18526003 Mon, 18 Jun 2007 10:49:54 EDT http://www.dslreports.com/forum/remark,18502282 tdoran : Title: Cisco Security Response: Cisco Trust Agent - Mac OS X Privilege Escalation Vulnerability

URL:
»www.cisco.com/en/US/customer/pro···645.html
(available to registered users)

»www.cisco.com/en/US/products/pro···645.html
(available to non-registered users)

Posted: June 11, 2007

Summary: This is the Cisco PSIRT response to an issue discovered and reported to Cisco by Adam Blake of Deloitte, UK regarding a vulnerability in Cisco Trust Agent (CTA) installations on Mac OS X.

The original report is available at the following link:

»www.securityfocus.com/archive/1/···0/0/flat.

We greatly appreciate the opportunity to work with researchers on security vulnerabilities, and welcome the opportunity to review and assist in product reports.

This vulnerability is documented in Cisco bug ID: CSCsi58799.
]]> http://www.dslreports.com/forum/remark,18502282 Wed, 13 Jun 2007 22:33:36 EDT http://www.dslreports.com/forum/remark,18502262 tdoran : Title: Cisco Field Notice: FN - 62826 - ONS 15454 - Possible Traffic Outage on 15454-MRC-12, 15454-MRC-4 and 15454-DS3XM-12 with Software Revision 8.0

URL:
»www.cisco.com/en/US/customer/pro···b0.shtml
(available to registered users)

Posted: June 8, 2007

Summary: A traffic outage on the 15454-MRC-12, 15454-MRC-4, or 15454-DS3XM-12 could occur under certain conditions when upgrading to release 8.0.
]]> http://www.dslreports.com/forum/remark,18502262 Wed, 13 Jun 2007 22:31:14 EDT http://www.dslreports.com/forum/remark,18502251 tdoran : Title: Updated Cisco Field Notice: FN - 61703 - NPE-G1, uBR7200-NPE-G1, C7301 and 7304-NPE-G100 May Experience a Software Error Resulting in an Unexpected Reload Due
to Watchdog Timeout (WDT)

URL:
»www.cisco.com/en/US/customer/pro···b8.shtml
(available to registered users)

Update Posted: June 6, 2007

Summary of Updates:

Added a note to the Problem Symptoms section.

Removed all the older DDTS versions shown in the DDTS section and added two new DDTS entries.

Changed the software versions in the Workaround/Solution section.
]]> http://www.dslreports.com/forum/remark,18502251 Wed, 13 Jun 2007 22:29:58 EDT http://www.dslreports.com/forum/remark,18502232 tdoran : Title: Cisco Field Notice: FN - 62830 - CRS16 - Grille Has Loose Louvres Which May Rattle When CRS Fans Are Operating - Procedure to Fix the Louvres is Available

URL:
»www.cisco.com/en/US/customer/pro···e2.shtml
(available to registered users)

Posted: June 6, 2007

Summary: The CRS-1 16 slot line card chassis rear grill shipped between December 21, 2006 and April 30, 2007 may have loose louvres on the grille.

There can be a rattling noise when the router is powered on, yet this does not affect the product functionality.
]]> http://www.dslreports.com/forum/remark,18502232 Wed, 13 Jun 2007 22:28:05 EDT http://www.dslreports.com/forum/remark,18502211 tdoran : Title: Cisco Field Notice: FN - 62488 - WS-C4948-10GE May Reset Due to Multibit ECC Error

URL:
»www.cisco.com/en/US/customer/pro···64.shtml
(available to registered users)

Posted: June 5, 2007

Summary: The WS-C4948-10GE fixed configuration switch models may reset due to a multibit ECC error on the SDRAM memory.

]]> http://www.dslreports.com/forum/remark,18502211 Wed, 13 Jun 2007 22:26:07 EDT http://www.dslreports.com/forum/remark,18455372 tdoran : Title: Updated Cisco Field Notice: FN - 62822 - Cisco Security Manager 3.1 - Software Removed from Cisco.com Due to Upgrade Issue - Updated Software Re-posted

URL:

»www.cisco.com/en/US/customer/pro···e7.shtml
(available to registered users)

Update Posted: June 5, 2007

Summary of Updates:

Update Title and Workaround/Solution sections to indicate that updated software has been re-posted.

Added link to software download in Workaround/Solution section.


]]> http://www.dslreports.com/forum/remark,18455372 Tue, 05 Jun 2007 19:37:47 EDT http://www.dslreports.com/forum/remark,18455367 tdoran : Title: Cisco Field Notice: Field Notice: FN - 62812 - MWR1941-DC Fan Failures - Replace Unit

URL:

»www.cisco.com/en/US/customer/pro···25.shtml
(available to registered users)

Posted: June 5, 2007

Summary: The content of this field notice is specific to the fans designed for use in the MWR-1941-DC router. No other platforms are covered by this field notice.

The MWR-1941 router fans could contain a defect causing one or more of the system fans to stop spinning or slow to the point prematurely where the system reports a fan failure.

The router should perform as configured providing it has not exceeded the maximum operating temperature. However, system fan failures will reduce the overall airflow and cooling within the box and can result in higher overall operating temperatures.

If the router's internal temperature rises above the maximum operating range, service (network connectivity or application usage) may be impacted depending on environmental conditions. Sustained use of the router beyond the maximum operating temperature could result in permanent damage to the internal components.


]]> http://www.dslreports.com/forum/remark,18455367 Tue, 05 Jun 2007 19:36:33 EDT http://www.dslreports.com/forum/remark,18452957 tdoran :
Title: Cisco Field Notice: FN - 62625 - MGX - SES-PXM-CNTL2T3E3 - New Minimum Software Release Needed to Ensure Forward Compatibility of SES-PXM - Software Upgrade Available

URL:

»www.cisco.com/en/US/customer/pro···9f.shtml
(available to registered users)

Posted: June 4, 2007

Summary: The SES-PXM-CNTL2TE3 card went end-of-sale (EOS) on January 31st, 2006. From this date onward, replacement spares were no longer manufactured. Cisco converted a number of PXM-1 cards into SES-PXM-CNTL2T3E3 cards. In order for these cards to function correctly, a minimum version 4.0(15.207) of software is required. Cisco recommends that customers that are not presently running
this minimum version of code upgrade. ]]> http://www.dslreports.com/forum/remark,18452957 Tue, 05 Jun 2007 14:52:13 EDT http://www.dslreports.com/forum/remark,18453351 tdoran : Title: Cisco Field Notice: FN - 62625 - MGX - SES-PXM-CNTL2T3E3 - New Minimum Software Release Needed to Ensure Forward Compatibility of SES-PXM - Software Upgrade Available

URL:

»www.cisco.com/en/US/customer/pro···9f.shtml
(available to registered users)

Posted: June 4, 2007

Summary: The SES-PXM-CNTL2TE3 card went end-of-sale (EOS) on January 31st, 2006. From this date onward, replacement spares were no longer manufactured. Cisco converted a number of PXM-1 cards into SES-PXM-CNTL2T3E3 cards. In order for these cards to function correctly, a minimum version 4.0(15.207) of software is required. Cisco recommends that customers that are not presently running
this minimum version of code upgrade.
]]> http://www.dslreports.com/forum/remark,18453351 Tue, 05 Jun 2007 13:46:39 EDT http://www.dslreports.com/forum/remark,18452965 tdoran : Title: Cisco Field Notice: FN - 62808 - GSR 12000-SIP Cards With SPAs May Fail to load Due to Incorrect IOS Clock Setting - Software Upgrade Required

URL:

»www.cisco.com/en/US/customer/pro···f1.shtml
(available to registered users)

Posted: June 4, 2007

Summary: The listed SPAs may fail to load on the GSR platform, showing the SPA slot as empty. The problem is specific to SPAs running 12.0.32SY on the GSR 12000 platform.

]]> http://www.dslreports.com/forum/remark,18452965 Tue, 05 Jun 2007 12:45:41 EDT http://www.dslreports.com/forum/remark,18441583 tdoran : Title: Cisco Field Notice: FN - 62827 - Cisco DME-1000/2000 Encoder Properties Not Saved - Recommended Software Fix is Available

URL:
»www.cisco.com/en/US/customer/pro···bc.shtml
(available to registered users)

Posted: May 31, 2007

Summary: One of the features of the Stream Control Extension (SCX) application enables the user to provide a live video stream while also saving a Windows Media VOD file. An issue was recently discovered that prevented the Windows Media VOD file from being created. The SCX
application will allow you to configure the setting and save the setting. However, the setting will disappear if the operator chooses to edit or examine the encoder settings. The end result of this issue is that the user cannot create a VOD file from an incoming signal. The live stream would be produced as expected. No serial number or date range has been identified.
]]> http://www.dslreports.com/forum/remark,18441583 Sun, 03 Jun 2007 12:12:26 EDT http://www.dslreports.com/forum/remark,18441579 tdoran : Title: Cisco Field Notice: FN - 62761 - Windows 2003 Service Pack 2 Install and CSA Compatibility with Unity on Certain Servers

URL:
»www.cisco.com/en/US/customer/pro···21.shtml
(available to registered users)

Posted: May 31, 2007

Summary: The system freezes with a blue screen displayed with Cisco Security Agent (CSA)and Windows 2003 Service Pack 2. This anomaly may manifest with either the standalone CSA or the managed CSA.

This defect was discovered with CSA 5.0.0.201 with patched csatdi.sys per the associated software defect.
]]> http://www.dslreports.com/forum/remark,18441579 Sun, 03 Jun 2007 12:11:12 EDT http://www.dslreports.com/forum/remark,18398805 tdoran : Title: Updated Cisco Field Notice: FN - 62573 - Routers (AS5350XM, AS5400XM, C180X, C181X, C1841, IAD2400, C2691, C2800NM, C2801, C3725, C3745, C3800, VG224) Unable to Read Compact Flash - ROMMON Upgrade Available

URL:
»www.cisco.com/en/US/customer/pro···01.shtml
(available to registered users)

Update Posted: May 25, 2007

Summary of Updates: Added Special instructions for downloading ROMmon image to the How to Upgrade Software section.
]]> http://www.dslreports.com/forum/remark,18398805 Sat, 26 May 2007 10:53:53 EDT http://www.dslreports.com/forum/remark,18398796 tdoran : Title: Updated Cisco Field Notice: FN - 62545 - TCC and Fan Tray (FTA3-T) Have Communications Problem That Can be Caused by Internal Noise Causing TCC Resets

URL:
»www.cisco.com/en/US/customer/pro···a6.shtml
(available to registered users)

Update Posted: May 25, 2007

Summary of Updates:
Added software version information to Problem Description and Workaround/Solution sections.
]]> http://www.dslreports.com/forum/remark,18398796 Sat, 26 May 2007 10:51:48 EDT http://www.dslreports.com/forum/remark,18398788 tdoran : Title: Cisco Field Notice: FN - 62805 - Cisco Unified IP Conference Station 7936 Fails to Upgrade - Upgrade Hangs at 50 Percent Done

URL:
»www.cisco.com/en/US/customer/pro···47.shtml
(available to registered users)

Posted: May 25, 2007

Summary: Cisco Unified IP Conference Station 7936 (CP-7936) fails to upgrade - the upgrade hangs at 50 percent done - under specific conditions to a different IP Phone firmware (FW) load. Specific conditions include a Cisco CallManager (CCM) upgrade that includes a different firmware load than what is on the CP-7936.
]]> http://www.dslreports.com/forum/remark,18398788 Sat, 26 May 2007 10:50:30 EDT http://www.dslreports.com/forum/remark,18398780 tdoran : Title: Cisco Field Notice: FN - 62818 - DS-C9140-K9 Switches with SAN-OS Release 3.0.x May Reload After Running for About 233 Days - Software Upgrade Required

URL:
»www.cisco.com/en/US/customer/pro···31.shtml
(available to registered users)

Posted: May 24, 2007

Summary: Cisco has identified that customers with DS-C9140-K9 switches running with SAN-OS releases 3.0.x - that is 3.0(1), 3.0(2), 3.0(2a), 3.0(2b), 3.0(3) and 3.0(3b)
- may see the switch reload in about 233 days from uptime.

The issue is only present in the DS-C9140-K9 platform running any SAN-OS 3.0.x release.

The issue is not present in any SAN-OS release prior to 3.0.x.
]]> http://www.dslreports.com/forum/remark,18398780 Sat, 26 May 2007 10:48:57 EDT http://www.dslreports.com/forum/remark,18398770 tdoran : Title: Cisco Security Response: Cisco CallManager Input Validation Vulnerability

URL:
»www.cisco.com/en/US/customer/pro···272.html
(available to registered users)

»www.cisco.com/en/US/products/pro···272.html
(available to non-registered users)

Posted: May 23, 2007

Summary: This is Cisco PSIRT's response to the statements made by Marc Ruef and Stefan Friedi from scip AG in their message "Cisco CallManager 4.1 Input Validation Vulnerability," posted on 2007 May 23 at 1600 UTC (GMT).

The original emails were posted to BugTraq and Full-Disclosure.

In their postings, Marc Ruef and Stefan Friedi illustrate how to bypass the web application firewall used in Cisco CallManager. This means of bypass can be used to display graphics, scripts, or other information downloaded from an external web site. This technique may also be used to conduct cross-site scripting attacks.

Cisco confirms that the example the authors Ruef and Friedi provided bypasses the web application firewall and that there may be other methods for bypassing the web application firewall.

Cisco has made improvements to the input validation mechanisms in CallManager that may mitigate the risks associated with this security vulnerability. These improvements have been incorporated into 4.2(3)sr2. Future releases, 3.3(5)sr3, 4.1(3)sr5 and 4.3(1)sr1, will also include the improvements made to address this bug.

This issue is being tracked by the following Cisco Bug ID:

CSCsi12374 (registered customers only) —Improvements in User Input Validation

Service releases of CallManager software are available at the following link:

»www.cisco.com/kobayashi/sw-cente···ce.shtml (registered customers only)
]]> http://www.dslreports.com/forum/remark,18398770 Sat, 26 May 2007 10:46:47 EDT http://www.dslreports.com/forum/remark,18380084 tdoran : Title: Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS While Processing SSL Packets

URL:
»www.cisco.com/en/US/customer/pro···49.shtml
(available to registered users)

»www.cisco.com/en/US/products/pro···49.shtml
(available to non-registered users)

Posted: May 22, 2007

Summary: Cisco IOS device may crash while processing malformed Secure Sockets Layer (SSL) packets. In order to trigger these vulnerabilities, a malicious client must send malformed packets during the SSL protocol exchange with the vulnerable device.

Successful repeated exploitation of any of these vulnerabilities may lead to a sustained Denial-of-Service (DoS); however, vulnerabilities are not known to compromise either the confidentiality or integrity of the data or the device. These vulnerabilities are not believed to allow an attacker will not be able to decrypt any previusly encrypted information.

Cisco IOS is affected by the following vulnerabilities:

* Processing ClientHello messages, documented as Cisco bug ID CSCsb12598

* Processing ChangeCipherSpec messages, documented as Cisco bug ID CSCsb40304

* Processing Finished messages, documented as Cisco bug ID CSCsd92405

Cisco has made free software available to address these vulnerabilities for affected customers.

There are workarounds available to mitigate the effects of these vulnerabilities.

]]> http://www.dslreports.com/forum/remark,18380084 Tue, 22 May 2007 21:44:45 EDT http://www.dslreports.com/forum/remark,18380063 tdoran : Title: Cisco Security Advisory: Vulnerability In Crypto Library

URL:
»www.cisco.com/en/US/customer/pro···5d.shtml
(available to registered users)

»www.cisco.com/en/US/products/pro···5d.shtml
(available to non-registered users)

Posted: May 22, 2007

Summary: A vulnerability has been discovered in a third party cryptographic library which is used by a number of Cisco products. This vulnerability may be triggered when a malformed Abstract Syntax Notation One (ASN.1) object is parsed. Due to the nature of the vulnerability it may be possible, in some cases, to trigger this vulnerability without a valid certificate or valid application-layer credentials (such as a valid username or password).

Successful repeated exploitation of any of these vulnerabilities may lead to a sustained Denial-of-Service (DoS); however, vulnerabilities are not known to compromise either the confidentiality or integrity of the data or the device. These vulnerabilities are not believed to allow an attacker will not be able to decrypt any previusly encrypted information.

The vulnerable cryptographic library is used in the following Cisco products:

Cisco IOS
Cisco IOS XR
Cisco PIX and ASA Security Appliances
Cisco Firewall Service Module (FWSM)
Cisco Unified CallManager

This vulnerability is assigned CVE ID CVE-2006-3894. It is externally coordinated and is tracked by the following external coordinators:

JPCERT/CC - tracked as JVNVU#754281

CPNI - tracked as NISCC-362917

CERT/CC - tracked as VU#754281

Cisco has made free software available to address this vulnerability for affected customers.

There are no workarounds available to mitigate the effects of the vulnerability.

]]> http://www.dslreports.com/forum/remark,18380063 Tue, 22 May 2007 21:42:33 EDT http://www.dslreports.com/forum/remark,18380025 tdoran : Title: Cisco Field Notice: FN - 62811 - GSR OC192E/POS-SR-SC or 4OC48E/POS-SR-SC Fails to Upgrade MBUS During Install - Replace Affected Hardware

URL:
»www.cisco.com/en/US/customer/pro···b4.shtml
(available to registered users)

Posted: May 21, 2007

Summary: Cards built with flash component ST M29F010B fail to upgrade MBUS due to software/hardware incompatibility. This causes problems on initial install and upgrade.

The affected cards need to be replaced.
]]> http://www.dslreports.com/forum/remark,18380025 Tue, 22 May 2007 21:38:47 EDT http://www.dslreports.com/forum/remark,18365626 tdoran : Title: Cisco Field Notice: FN - 62798 - AIR-WLC2006 - Intermittent Low Level Power Supply Failure

URL:
»www.cisco.com/en/US/customer/pro···1e.shtml
(available to registered users)

Posted: May 18, 2007

Summary: The power supply (341-0175-03) associated with Product ID AIR-WLC2006-K9 has experienced some intermittent failures for failing to meet the requirements for minimum current flow.

]]> http://www.dslreports.com/forum/remark,18365626 Sun, 20 May 2007 13:53:54 EDT http://www.dslreports.com/forum/remark,18355424 skj : In an effort to avoid overwhelming the forum with "Field Notices" and "Security Advisories", this thread has been created as a depository for all such postings.]]> http://www.dslreports.com/forum/remark,18355424 Fri, 18 May 2007 11:09:46 EDT