CVE-2016-1453 Cisco Nexus 7000 and 7700 Series Switches Buffer Overflow Vulnerability

Earlier today, Cisco released a critical security advisory affecting its Nexus 7000 and Nexus 7700 Series Switches, CVE-2016-1453. A vulnerability in the Overlay Transport Virtualization (OTV) generic routing encapsulation (GRE) implementation of the Cisco Nexus 7000 and 7700 Series Switches could allow an attacker to cause a reload of the affected system or to remotely [...]

By | October 5th, 2016|Cisco, Security, System Administration|

CVE-2016-6415 IKEv1 Information Disclosure Vulnerability in Multiple Cisco Products

On Friday, Cisco published a high level security advisory CVE-2016-6415 for an IKEv1 Information Disclosure Vulnerability that affects multiple Cisco products including: Cisco IOS, Cisco IOS XR, and Cisco IOS XE. The vulnerability is in the IKEv1 packet processing code which could allow an unauthenticated remote attacker to retrieve memory contents, which could lead to [...]

By | September 19th, 2016|Attacks, Cisco, Security, System Administration|

Cisco Firepower Management Center and FireSIGHT System Software Session Fixation Vulnerability

Today, Cisco released a security advisory for its Firepower Management Center and FireSIGHT System Software for a session fixation vulnerability. The vulnerability is rated as a medium risk with no workarounds or software updates at this time. The vulnerability could allow an unauthenticated, remote attacker to hijack a valid user session. According to Cisco: The [...]

By | September 7th, 2016|Cisco, Security|
Load More Posts