4 matches found
Code injection
The Neighbor Discovery ND protocol implementation in the IPv6 stack in Cisco IOS 15.33S0.1 on ASR devices mishandles internal tables, which allows remote attackers to cause a denial of service memory consumption or device crash via a flood of crafted ND messages, aka Bug ID CSCup28217...
Code injection
The Network-Based Application Recognition NBAR protocol implementation in Cisco IOS 15.3100M and earlier on Cisco 2900 Integrated Services Router aka Cisco Internet Router devices allows remote attackers to cause a denial of service NBAR process hang via IPv4 packets, aka Bug ID CSCuo73682...
CVE-2013-5481
Cisco IOS Software NAT implementation contains a vulnerability in PPTP handling that, when NAT is used, can be exploited by remote attackers sending crafted TCP port-1723 packets to cause a DoS and device reload. Affected releases include Cisco IOS 12.2 and 15.0–15.3. The issue is identified as B...
Cisco WebEx未初始化内存读取漏洞
BUGTRAQ ID: 59649 CVECAN ID: CVE-2013-1232 WebEx会议服务是Cisco WebEx管理和维护的托管多媒体会议解决方案。 多个Cisco WebEx产品上的Cisco IOS处理HTTP请求时存在错误,通过发送特制的请求到Cisco WebEx节点,未经身份验证的远程攻击者可利用此漏洞读取未初始化的内存。 0 Cisco IOS 15.3 Cisco WebEx 厂商补丁: Cisco ----- Cisco已经为此发布了一个安全公告(CVE-2013-1232)以及相应补丁: CVE-2013-1232:Cisco WebEx...