CVE-2018-0136

CVE-2018-0136 affects Cisco IOS XR Software Release 5.3.4 on ASR 9000 Series with Trident-based line cards configured for IPv6. The issue is a DoS caused by improper handling of IPv6 packets with a fragment header extension, allowing an unauthenticated remote attacker to trigger a reload of one o...

StoreFront 3.x MMC Crashes When Editing Multi-Site Aggregation

MMC crashes when trying to remove controller from Multi-Site Aggregation Configuration. This only happens when trying make changes on Multi site aggregation Configuration...

OSXAuditor - Free Mac OS X Computer Forensics Tool

OS X Auditor is a free Mac OS X computer forensics tool. OS X Auditor parses and hashes the following artifacts on the running system or a copy of a system you want to analyze: the kernel extensions the system agents and daemons the third party's agents and daemons the old and deprecated system a...

Cisco ASR 1000 Unauthorized Access Vulnerability

The Cisco ASR 1000 is a system router offered by Cisco. The Cisco ASR 1000 has a security vulnerability in the motherboard console port that allows an attacker to exploit the vulnerability by submitting a special request for unauthorized access to the system...

Input validation

A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...

CVE-2017-6795

Cisco IOS XE Software on Cisco ASR 920 Series Routers is affected by CVE-2017-6795 due to improper input validation in the USB-modem code (platform usb modem CLI command). A local, authenticated attacker could exploit this to overwrite arbitrary files on the device’s underlying operating system. ...

CVE-2017-6795

A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...

Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary File Overwrite Vulnerability

A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper inpu...

Cisco ASR 5000 Series Aggregation Services Router Security Bypass Vulnerability

Cisco ASR 5000 Series Aggregation Services Routers are the ASR 5000 series multifunction routers from Cisco. A redirection vulnerability exists in Cisco ASR 5000 Series Aggregation Services RoutersGGSN, which allows remote attackers to exploit the vulnerability to redirect traffic by changing the...

Cisco ASR 5000 Series Aggregation Services Router Rules Bypass Vulnerability

Cisco ASR 5000 Series Aggregation Services Routers are the ASR 5000 series multifunction routers from Cisco. A vulnerability in the filtering mechanism of the Cisco ASR 5000 Series Aggregation Services RoutersGGSN ACLs could be exploited by a remote attacker to submit a special request to bypass...

CVE-2017-6612

A vulnerability in the gateway GPRS support node GGSN of Cisco ASR 5000 Series Aggregation Services Routers 17.3.9.62033 through 21.1.2 could allow an unauthenticated, remote attacker to redirect HTTP traffic sent to an affected device. More Information: CSCvc67927...

Cisco ASR 903/ASR 920 Series Denial of Service Vulnerability

The Cisco ASR 903 and ASR 920 are router products. A security vulnerability exists in the Cisco ASR 903ASR 920 series devices using RSP2 cards due to ineffective handling of IPv6 packets. An unauthenticated, physically proximate attacker caused a denial of service on the affected system...

Cisco ASR 1000 Series Aggregation Services Routers IOS XE SNMP DoS Vulnerability

Cisco ASR 1000 Series Aggregation Services router with Cisco IOS XE Software is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2016-6467

CVE-2016-6467 affects Cisco ASR 5000 Series Switches (StarOS) with IPv6 packet fragment reassembly. The root cause is lack of proper input validation of IPv6 fragment lengths, enabling an unauthenticated, remote attacker to trigger a reload of the Network Processing Unit (NPU) and cause a denial ...

Cisco ASR 5000 Series Aggregation Services Routers Denial of Service Vulnerability

Cisco ASR 5000 Series Aggregation Services Routers is a set of 9000 series router devices from Cisco USA. A remote denial of service vulnerability exists in Cisco ASR 5000 Series Aggregation Services Routers. An attacker could exploit this vulnerability to cause a reload on an affected device,...

Cisco ASR 5500 Series Routers Denial of Service Vulnerability

The Cisco ASR 5000 Series is a carrier-class platform for deploying high-demand 3G networks and migrating to Long Term Evolution LTE. A security vulnerability exists in StarOS Slowpath in the Cisco ASR 5500 series routers when fitted with DPC2. Exploitation of this vulnerability by an...

Cisco ASR 900 Series Aggregation Services Routers Buffer Overflow Vulnerability

The Cisco ASR 900 Series are modular aggregation services routers. The Cisco ASR 900 has a security vulnerability in the Transaction Language 1 TL1 code that could allow a remote attacker to cause a reload of the affected system and remotely execute arbitrary code...

datasploit - A tool to perform various OSINT techniques

A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitoring on the data. Overview of the tool: Performs OSINT on a domain / email / username / phone and find out information from different sources. Correlates and...

Cisco IOS XR Software for Cisco ASR 9001 Aggregation Services Routers Fragmented Packet Denial of Service Vulnerability (cisco-sa-20160810-iosxr)

A vulnerability in the driver processing functions of Cisco IOS XR Software for Cisco ASR 9001 Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a memory leak on the route processor RP of an affected device, which could cause the device to drop all control-plan...

Cisco IOS XR LPTS Denial of Service Vulnerability (/cisco-sa-20160519-ios-xr)

A vulnerability in the Local Packet Transport Services LPTS network stack of Cisco IOS XR for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause a limited denial of service DoS condition on an affected platform. Copyright C 2016 Greenbone...