Advisories

Cisco IOS XR Software contains a vulnerability in the Border Gateway Protocol (BGP) feature. The vulnerability manifests itself when a BGP peer announces a prefix with a specific, valid but unrecognized transitive attribute. On receipt of this prefix, the Cisco IOS XR device will corrupt the attribute before sending it to the neighboring devices. Neighboring devices that receive this corrupted update may reset the BGP peering session.

Categories: Advisories

Cisco Unified Communications Manager Denial of Service Vulnerabilities

Cisco Security Advisories - Wed, 08/25/2010 - 15:40

Cisco Unified Communications Manager contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages. Exploitation of these vulnerabilities could cause an interruption of voice services.

Categories: Advisories

Cisco Unified Presence Denial of Service Vulnerabilities

Cisco Security Advisories - Wed, 08/25/2010 - 15:30

Cisco Unified Presence contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages. Exploitation of these vulnerabilities could cause an interruption of presence services.

Categories: Advisories

SA10-103A: Microsoft Updates for Multiple Vulnerabilities

CERT Security Advisories - Thu, 08/19/2010 - 20:00

Microsoft Updates for Multiple Vulnerabilities

Categories: Advisories

Cisco IOS Software TCP Denial of Service Vulnerability

Cisco Security Advisories - Thu, 08/12/2010 - 21:30

Cisco IOS Software Release, 15.1(2)T is affected by a denial of service (DoS) vulnerability during the TCP establishment phase. The vulnerability could cause embryonic TCP connections to remain in a SYNRCVD or SYNSENT state. Enough embryonic TCP connections in these states could consume system resources and prevent an affected device from accepting or initiating new TCP connections, including any TCP-based remote management access to the device.

Categories: Advisories

SA10-089A: Microsoft Internet Explorer Vulnerabilities

CERT Security Advisories - Thu, 08/12/2010 - 18:00

Microsoft Internet Explorer Vulnerabilities

Categories: Advisories

SA10-068A: Microsoft Updates for Multiple Vulnerabilities

CERT Security Advisories - Wed, 08/11/2010 - 18:00

Microsoft Updates for Multiple Vulnerabilities

Categories: Advisories

Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine

Cisco Security Advisories - Wed, 08/11/2010 - 16:00

The Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine contain the following DoS vulnerabilities: Real-Time Streaming Protocol (RTSP) inspection DoS vulnerability HTTP, RTSP, and Session Initiation Protocol (SIP) inspection DoS vulnerability Secure Socket Layer (SSL) DoS vulnerability SIP inspection DoS vulnerability

Categories: Advisories

SQL Injection Vulnerability in Cisco Wireless Control System

Cisco Security Advisories - Wed, 08/11/2010 - 16:00

Cisco Wireless Control System (WCS) contains a SQL injection vulnerability that could allow an authenticated attacker full access to the vulnerable device, including modification of system configuration; create, modify and delete users; or modify the configuration of wireless devices managed by WCS.

Categories: Advisories

SA10-040A: Microsoft Updates for Multiple Vulnerabilities

CERT Security Advisories - Wed, 08/11/2010 - 12:00

Microsoft Updates for Multiple Vulnerabilities

Categories: Advisories

Primary links

Advisories