Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > March 2008 > 3584 - Cisco security advisories

March 2008

3584 - Cisco security advisories

ID: 3584
Date: 29/03/2008
Title: 3584 - Cisco security advisories
Platform level affected:Firmware
Hardware components affected:Network Router/Switch/Modem
Specific operating systems components affected: Cisco IOS
Net-enabled software: Other
Security software:Other
Other software: Other
Remediation Summary:Update your copy of the software with the download available from the supplier.
Vendors affected:Cisco
Applications affected:IOS
Adversity source: Unknown
Attack Vector: Vulnerability exploitation
Virulence: Unknown
Warning Status: Proof of concept
Potential Damage: Network DOS
Possible Duration: Unknown
Availability of fix: Available
Type of fix: Patch
Source: Cisco
Reliability of source: Trusted
Source URL: http://www.cisco.com/en/US/products/products_security_advisories_listing.html
Abstract: Release of 5 Cisco security advisories

On the March 26, 2008 Cisco issed five Security Advisories. The Advisories all affect Cisco IOS.
Each Advisory lists the releases that correct the described vulnerability.

March 26th bundled IOS Advisory Table
http://www.cisco.com/warp/public/707/cisco-sa-20080326-bundle.shtml

Individual publication links are listed below:

Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability
    http://www.cisco.com/warp/public/707/cisco-sa-20080326-pptp.shtml
   
Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS
    http://www.cisco.com/warp/public/707/cisco-sa-20080326-dlsw.shtml
   
Cisco IOS User Datagram Protocol Delivery Issue For IPv4/IPv6 Dual-stack Routers
    http://www.cisco.com/warp/public/707/cisco-sa-20080326-IPv4IPv6.shtml

 Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720
    http://www.cisco.com/warp/public/707/cisco-sa-20080326-queue.shtml
   
 Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak
    http://www.cisco.com/warp/public/707/cisco-sa-20080326-mvpn.shtml

 

This advisory contains information released by the original author. Some of the information may have changed since it was released. If the issue affects you, it may be prudent to retrieve the advisory from the site of the original source to ensure that you receive the most current information concerning that problem. Reference to any specific commercial product, process, or service by trade name, trademark manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favouring by CPNI.

The views and opinions of authors expressed within this notice shall not be used for advertising or product endorsement purposes. CPNI shall not accept responsibility for any errors or omissions contained within this advisory. In particular, they shall not be liable for any loss or damage whatsoever, arising from or in connection with the usage of information contained within this advisory.

CSIRTUK is a member of the Forum of Incident Response and Security Teams (FIRST) and has contacts with other international Incident Response Teams (IRTs) in order to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing amongst its members and the community at large.

Sat, 29 Mar 2008 22:05:00 GMT
Domain affected: Technical
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |