Cisco patches DoS holes

Cisco has patched five denial of service (DoS) flaws, including one critical and four high severity holes.

The most dangerous flaw affects the HTTP URL redirect feature of Cisco's LAN Controller Software, allowing unauthenticated remote attackers to trigger buffer overflows and DoS or arbitrary code execution.

Any attacker can also cause DoS in a second flaw in the controller's Bonjour task manager from reboots, and the same condition exists in a third flaw in Cisco's AireOS Software.

The fourth bug appears in the DHCPv6 relay feature of Cisco's Adaptive Security Appliance. The final DoS hole is in a vulnerable version of the Secure Real-time Transport Protocol library (libSRTP). ®

Sponsored: Balancing consumerization and corporate control




Biting the hand that feeds IT © 1998–2019