Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsJob BoardISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Equipment Support » Hardware By Brand » Cisco » Cisco Field Notices and Security Advisories
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Submit a new forum topic ·Forum FAQ ·Submit a FAQ ·Docs Guidelines and Advisories ·EOS/EOL thread
AuthorAll Replies

tdoran
Premium
join:2003-09-27
Ridge, NY

reply to skj
Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS W

Title: Cisco Security Advisory: Multiple Vulnerabilities in Cisco IOS While Processing SSL Packets

URL:
»www.cisco.com/en/US/customer/pro···49.shtml
(available to registered users)

»www.cisco.com/en/US/products/pro···49.shtml
(available to non-registered users)

Posted: May 22, 2007

Summary: Cisco IOS device may crash while processing malformed Secure Sockets Layer (SSL) packets. In order to trigger these vulnerabilities, a malicious client must send malformed packets during the SSL protocol exchange with the vulnerable device.

Successful repeated exploitation of any of these vulnerabilities may lead to a sustained Denial-of-Service (DoS); however, vulnerabilities are not known to compromise either the confidentiality or integrity of the data or the device. These vulnerabilities are not believed to allow an attacker will not be able to decrypt any previusly encrypted information.

Cisco IOS is affected by the following vulnerabilities:

* Processing ClientHello messages, documented as Cisco bug ID CSCsb12598

* Processing ChangeCipherSpec messages, documented as Cisco bug ID CSCsb40304

* Processing Finished messages, documented as Cisco bug ID CSCsd92405

Cisco has made free software available to address these vulnerabilities for affected customers.

There are workarounds available to mitigate the effects of these vulnerabilities.

to forum · permalink · · 2007-05-22 21:44:45 · Reply to this
Forums » Equipment Support » Hardware By Brand » Cisco

Monday, 06-Oct 13:23:13 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 9 years online! © 1999-2008 dslreports.com.
page compression OFF
Most commented news this week
· [41] It's Cable TV Rate Hike Season
· [27] Half Of New iPhone Owners Came From Verizon
· [20] Customers Still Annoyed By FiOS Billing
· [12] Verizon Says Alltel Deal On Schedule
Most people now reading
· No more usage checker? [TekSavvy]
· IMG 1.6 Build 06.89 Released [Verizon FIOS TV]
· [XP Home] I can't get past blue screen [Microsoft help]
· [XPAV infection?] Cannot log in to windows, nor safe mode [Security]
· Texas Realignment Thread - 10/6 [Verizon FIOS TV]
· Security Software Updates - 06 Oct 2008 [Security]
· [Serious] Breaking news - TSE down 1000 points [Canadian Chat]
· New Channel Realignment #2 [Verizon FIOS TV]
· Teksavvy "IMPORTANT NOTICE" Emails [TekSavvy]