Cisco Warns of IOS Flaw Vulnerable to ShadowBrokers Attack

Cisco is warning its customers of new activity around the ShadowBrokers data dump, indicating that all versions of its IOS, IOS XE and IOS XR software are vulnerable to one of the many exploits released more than a month ago. “Cisco Product Security Incident Response Team PSIRT is aware of...

Code injection

The SERVICE.DNS signature engine in the Intrusion Prevention System IPS in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service device crash or hang via network traffic that triggers unspecified IPS signatures, a different vulnerability than CVE-2008-1447...