Cisco Patches Serious Flaws in Security, Wireless Appliances

I put this up as I KNOW a lot of you Tech-Heads run Cisco stuff (probably wireless along with a few Cisco Switches). I wanted to make SURE you all knew about this vulnerability and the immediate need to get these wireless units patched.

Cisco has released software updates to address a series of critical and high severity vulnerabilities affecting some of the company’s security and wireless appliances.

The most serious of the flaws disclosed on Wednesday is a command injection vulnerability (CVE-2015-6298) affecting the certificate generation process in the administration web interface of the Cisco Web Security Appliance (WSA). The vulnerability, caused by improper parameter validation, can be exploited by a remote attacker to execute arbitrary commands with root privileges.

The Cisco Web Security Appliance is also affected by a couple of high severity denial-of-service (DoS) vulnerabilities that can be exploited to cause the device to run out of system memory. One of these security bugs affects the file-range request functionality of Cisco AsyncOS (CVE-2015-6293), while the other impacts the AsyncOS proxy cache functionality (CVE-2015-6292).

Vulnerabilities in AsyncOS components also affect the Cisco Email Security Appliance (ESA). One of these issues, a DoS flaw identified as CVE-2015-6321, can be used by a remote attacker to cause the device to stop accepting new TCP connections. The second issue, first disclosed in June, can be exploited by a remote, unauthenticated attacker to bypass the appliance’s anti-spam functionality.

Read more about it here.

Da Boss!

Website: www.digitalsmind.com Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Latest Content

  • Fecal Bacteria Found In Drinks Sold By Major Fast Food Restaurants Like McDonald's
    Written by
    Fecal Bacteria Found In Drinks Sold By Major Fast Food Restaurants Like McDonald's Welp, there goes the "yes" when I am asked if…
  • Capture amazing fireworks shots with your iPhone (and Android)
    Written by
    Capture amazing fireworks shots with your iPhone (and Android) So tonight is the night we here in the U.S.…
    Read more...
  • Work From Home In 2017: The Top 100 Companies Offering Remote Jobs
    Written by
    Work From Home In 2017: The Top 100 Companies Offering Remote Jobs I work from home, the can, the bedroom, the front-yard,…
    Read more...
  • Microsoft delays its Windows 10 Timeline feature
    Written by
    Microsoft delays its Windows 10 Timeline feature When you have a piece of code in front of…
    Read more...
  • Refurbished: Microsoft Xbox One S 1TB Console - Madden NFL 17 Bundle - 182.00 (WSL)
    Written by
    Holy cow! 182.00 for the latest and greatest! Damn... if…
    Read more...

Visit the Digitalsmind Video YouTube Page!

Did you know we have a video page on YouTube? 

Well... WE DO! 

Check us out! 

- Our Video page.