Cisco Releases Security Updates
Original release date: March 22, 2017
from US-CERT National Cyber Alert System http://ift.tt/2nDzbpq
Cisco has released security updates to address vulnerabilities in its IOS, IOS XE, and IOx Software. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system or cause a denial-of-service condition.
Users and administrators are encouraged to review the following Cisco Security Advisories and apply the necessary updates:
- Cisco IOx Data in Motion Stack Overflow Vulnerability
- Cisco IOS XE Software for Cisco ASR 920 Series Routers Zero Touch Provisioning Denial of Service Vulnerability
- Cisco IOS XE Software HTTP Command Injection Vulnerability
- Cisco IOS XE Software Web User Interface Denial of Service Vulnerability
- Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability
- Cisco IOS and IOS XE Software DHCP Client Denial of Service Vulnerability
- Cisco Application-Hosting Framework Arbitrary File Creation Vulnerability
- Cisco Application-Hosting Framework Directory Traversal Vulnerability
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT National Cyber Alert System http://ift.tt/2nDzbpq