Author Archives: CIRT Team



CIRT Team

in Security Advisories & Alerts

Cisco ASA Software CVE-2017-6609 Denial of Service Vulnerability

Description: The vulnerability is due to improper parsing of malformed IPsec packets. An attacker could exploit this vulnerability by sending malformed IPsec packets to the affected system. Only traffic directed to the affected system can be used to exploit this vulnerability. This vulnerability affects systems configured in routed firewall mode only and in single or multiple context mode. This vulnerability can be triggered by IPv4...

Read More

0
23 Apr 2017
in Security Advisories & Alerts

Cisco Unified Communications Manager CVE-2017-3808 Denial of Service Vulnerability

Description: The vulnerability is due to insufficient rate limiting protection. An attacker could exploit this vulnerability by sending the affected device a high rate of SIP messages. An exploit could allow the attacker to cause the device to reload unexpectedly. The device and services will restart automatically. Related CVE: CVE-2017-3808 Impact:  A vulnerability in the Session Initiation Protocol (SIP) UDP throttling process of Cisco Unified...

Read More

0
23 Apr 2017
in Security Advisories & Alerts

Cisco Firepower System Software CVE-2016-6368 Denial of Service Vulnerability

Description: The vulnerability is due to improper input validation of the fields in the PGM protocol packet. An attacker could exploit this vulnerability by sending a crafted PGM packet to the detection engine on the targeted device. An exploit could allow the attacker to cause a DoS condition if the Snort process restarts and traffic inspection is bypassed or traffic is dropped. Related CVE: CVE-2016-6368...

Read More

0
23 Apr 2017
in Security Advisories & Alerts

Cisco IOS and IOS XE Software Multiple Denial of Service Vulnerabilities

Description: These vulnerabilities are due to improper parsing of crafted EnergyWise packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted EnergyWise packets to be processed by an affected device. An exploit could allow the attacker to cause a buffer overflow condition or a reload of the affected device, leading to a DoS condition. Related CVE ID(s): CVE-2017-3860, CVE-2017-3861, CVE-2017-3862,...

Read More

0
23 Apr 2017
in Security Advisories & Alerts

Microsoft Windows Graphics CVE-2017-0005 Local Privilege Escalation Vulnerability

Description: The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka “Windows GDI Elevation of Privilege Vulnerability.” This vulnerability is different from those described in CVE-2017-0001,...

Read More

0
12 Apr 2017
in Security Advisories & Alerts

Microsoft Internet Explorer CVE-2017-0149 Remote Memory Corruption Vulnerability

Description: Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Internet Explorer Memory Corruption Vulnerability.” This vulnerability is different from those described in CVE-2017-0018 and CVE-2017-0037. Internet Explorer 9, 10 and 11 are vulnerable. Impact: Attackers can exploit this issue to execute arbitrary code in the context...

Read More

0
12 Apr 2017
in Security Advisories & Alerts

Microsoft Office RTF documents that leverage CVE-2017-0199 vulnerability

Description: This vulnerability allows a malicious actor to download and execute a Visual Basic script containing PowerShell commands when a user opens a document containing an embedded exploit. The vulnerability affects Microsoft Office, including the latest Office 2016 edition running on Windows 10. Impact: Researchers has observed Office documents exploiting CVE-2017-0199 that download and execute malware payloads from different well-known malware families. Mitigation: Updates are...

Read More

0
12 Apr 2017
MoU between the Indian Computer Emergency Response Team (CERT-In) and BGD e-GOV CIRT
in Articles, English articles, News

MoU between the Indian Computer Emergency Response Team (CERT-In) and BGD e-GOV CIRT

At the end of a bilateral meeting between Sheikh Hasina, Prime Minister of Bangladesh and Narendra Modi, Prime Minister of India; 22 agreements and memorandum of understanding (Mou) have been signed at Hayadrarabad house in New Delhi between India and Bangladesh. After the meeting; defense, financial, information technology, power and energy related agreements and MoU was signed by the two countries officials. To enhance cooperation in...

Read More

0
09 Apr 2017
in Security Advisories & Alerts

Cisco Wireless LAN Controller IPv6 UDP Denial of Service Vulnerability: CVE-2016-9219

Description: The vulnerability is due to incomplete IPv6 UDP header validation. An attacker could exploit this vulnerability by sending a crafted IPv6 UDP packet to a specific port on the targeted device. An exploit could allow the attacker to impact the availability of the device as it could unexpectedly reload. Impact:  Attackers can exploit this issue to cause denial-of-service conditions. Mitigation: Cisco has released software...

Read More

0
06 Apr 2017
in Security Advisories & Alerts

Cisco Aironet 1830 Series and 1850 Series Access Points Mobility Express Default Credential Vulnerability: CVE-2017-3834

Description: The vulnerability is due to the existence of default credentials for an affected device that is running Cisco Mobility Express Software, regardless of whether the device is configured as a master, subordinate, or standalone access point. An attacker who has layer 3 connectivity to an affected device could use Secure Shell (SSH) to log in to the device with elevated privileges. A successful exploit...

Read More

0
06 Apr 2017
Page 131 of 135« First...102030...129130131132133...Last »