Security Hero Rotating Header Image

June, 2008:

Vulnerability in Java Secure Socket Extension

Vulnerability in Java Secure Socket Extension

This is the Cisco PSIRT response to the vulnerability in Java Secure Socket Extension (JSSE) disclosed by Sun Microsystems on July 10, 2007, the details of which are available at http://sunsolve.sun.com/search/document.do?assetkey=1-26-102997-1

URL: http://www.cisco.com/en/US/products/products_security_response09186a008088bd19.html

Vulnerability In Crypto Library

Vulnerability In Crypto Library

A vulnerability has been discovered in a third party cryptographic library which is used by a number of Cisco products. This vulnerability may be triggered when a malformed Abstract Syntax Notation One (ASN.1) object is parsed. Due to the nature of the vulnerability it may be possible, in some cases, to trigger this vulnerability without a valid certificate or valid application-layer credentials (such as a valid username or password).

URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00809bb300.shtml

The rise of targeted malware

The rise of targeted malware

Research firms have been saying for quite some time that the antivirus/perimeter approach to security is dead, and targeted attacks could very well be the final nail in the AV coffin.

URL: http://www.scmagazineus.com/The-rise-of-targeted-malware/article/111769/

Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS

Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS

Cisco IOS contains multiple vulnerabilities in the Data-link Switching (DLSw) feature that may result in a reload or memory leaks when processing specially crafted UDP or IP Protocol 91 packets.

URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00809bb2a9.shtml

Wide Area Application Services (WAAS) Common UNIX Printing System (CUPS) Vulnerability

Wide Area Application Services (WAAS) Common UNIX Printing System (CUPS) Vulnerability

This is the Cisco PSIRT response to a security advisory regarding a vulnerability in Common UNIX Printing System (CUPS). The CUPS security advisory can be found at http://www.cups.org/str.php?L2561.

URL: http://www.cisco.com/en/US/products/products_security_response09186a00809a1f11.html

Cisco Unified Communications Manager Denial of Service and Authentication Bypass Vulnerabilities

Cisco Unified Communications Manager Denial of Service and Authentication Bypass Vulnerabilities

Cisco Unified Communications Manager (CUCM), formerly Cisco CallManager, contains a denial of service (DoS) vulnerability in the Computer Telephony Integration (CTI) Manager service that may cause an interruption in voice services and an authentication bypass vulnerability in the Real-Time Information Server (RIS) Data Collector that may expose information that is useful for reconnaissance.

URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00809b9011.shtml

Rise in SQL Injection Attacks Exploiting Unverified User Data Input – 6/25/2008

Microsoft Security Advisory (954462): Rise in SQL Injection Attacks Exploiting Unverified User Data Input – 6/25/2008

Revision Note: June 25, 2008: Removed erroneous references to form field and cookie value testing from the HP Scrawlr tool description. Advisory Summary:Microsoft is aware of a recent escalation in a class of attacks targeting Web sites that use Microsoft ASP and ASP.NET technologies but do not follow best practices for secure Web application development. These SQL injection attacks do not exploit a specific software vulnerability, but instead target Web sites that do not follow secure coding practices for accessing and manipulating data stored in a relational database. When a SQL injection attack succeeds, an attacker can compromise data stored in these databases and possibly execute remote code. Clients browsing to a compromised server could be forwarded unknowingly to malicious sites that may install malware on the client machine.

URL: http://www.microsoft.com/technet/security/advisory/954462.mspx

Rootkits on Cisco IOS Devices

Rootkits on Cisco IOS Devices

This is the Cisco PSIRT response to an issue that will be disclosed at the EUSecWest security conference on May 22nd, 2008 by Mr. Sebastian Muniz of Core Security Technologies.

URL: http://www.cisco.com/en/US/products/products_security_response09186a0080997783.html

Interwoven Deploys Infoblox for Delivery of Core Network Services

Interwoven Deploys Infoblox for Delivery of Core Network Services

Infoblox Inc. today announced that Interwoven, a global leader in content management solutions, has deployed Infoblox appliances for delivery of core network services, including DNS and DHCP.

URL: http://feedproxy.google.com/~r/InfobloxNewsFeed/~3/y5hHuKWHMbk/release.cfm

Cisco Intrusion Prevention System Jumbo Frame Denial of Service

Cisco Intrusion Prevention System Jumbo Frame Denial of Service

Cisco Intrusion Prevention System (IPS) platforms that have gigabit network interfaces installed and are deployed in inline mode contain a denial of service vulnerability in the handling of jumbo Ethernet frames.

URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00809b3842.shtml

System Center Configuration Manager 2007 Blocked from Deploying Security Updates – 6/17/2008

Microsoft Security Advisory (954474): System Center Configuration Manager 2007 Blocked from Deploying Security Updates – 6/17/2008

Revision Note: June 17, 2008: Advisory updated to reflect availability of fix. Advisory Summary:Microsoft has completed the investigation into public reports of a non-security issue that affects environments with all supported versions of System Center Configuration Manager 2007 that deploy updates to Systems Management Services (SMS) 2003 clients. Microsoft has confirmed those reports and has released an update to correct this issue under Microsoft Knowledge Base Article 954474. Microsoft encourages customers affected by this issue to review and install this update.

URL: http://www.microsoft.com/technet/security/advisory/954474.mspx

Largest US Independent Furniture Company Deploys Infoblox Appliances for DNS and DHCP Services and Disaster Recovery

Largest US Independent Furniture Company Deploys Infoblox Appliances for DNS and DHCP Services and Disaster Recovery

Infoblox Inc. today announced that Rooms to Go, America’s largest independent furniture company, has selected and deployed Infoblox appliances to deliver DNS, DHCP and IPAM services.

URL: http://feedproxy.google.com/~r/InfobloxNewsFeed/~3/w3roY5aAlbs/release.cfm

Get educated about spam

Get educated about spam

Humans are oftentimes gullible and inquisitive, and spammers are taking full advantage.

URL: http://www.scmagazineus.com/Get-educated-about-spam/article/110968/

Multiple Vulnerabilities in Cisco PIX and Cisco ASA

Multiple Vulnerabilities in Cisco PIX and Cisco ASA

Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances. This security advisory outlines details of these vulnerabilities.

URL: http://www.cisco.com/en/US/products/products_security_advisory09186a00809a8354.shtml