More than 80 Cisco products affected by FragmentSmack DDoS.
Cisco is currently reviewing its product line to determine which products and services use Linux kernel 3,9 or higher, which is vulnerable to the denial of service (DoS) bug FragmentSmack.
The networking hardware maker has already assembled a list of more than 80 products that are affected by the vulnerability. Many of them expect a fix by February 2019. (Sources)
Multiple vulnerabilities in Cisco Identity Services Engine (CERTFR-2018-AVI-454)
Multiple vulnerabilities have been discovered in Cisco Identity Services Engine. They allow an attacker to cause arbitrary code execution, security policy circumvention and breach of data confidentiality. Refer to the publisher's security bulletin to obtain fixes (see Documentation section). (Sources)
Vulnerability in Cisco Video Surveillance Manager (CERTFR-2018-AVI-449)
A vulnerability has been discovered in Cisco Video Surveillance Manager. It allows an attacker to cause a security policy bypass.
Refer to the publisher's security bulletin to obtain fixes (see Documentation section). (Sources)
Windows systems vulnerable to FragmentSmack Denial of Service
Microsoft has issued a security advisory for a denial of service vulnerability that could render several versions of Windows completely unresponsive and has no mitigating factors, the company says “The vulnerability affects all versions of Windows 7 through 10 ( including 8,1 RT), Server 2008, 2012, 2016, and base installations that do not have the latest set of security updates released as part of the September 2018 patch updates Tuesday.” (Sources)
Cisco Systems is an American IT company specializing, originally, in network equipment (Ethernet routers and switches), and since 2009 in servers. In 2013, Cisco announced the acquisition of a cybersecurity company, Sourcefire. Two years later, Cisco acquired OpenDNS to strengthen its IT security activities. CISCO is the global leader in digital transformation support. It will help you seize the opportunities available to you today and tomorrow, thanks to its comprehensive solutions offering. Your needs will be studied down to the smallest detail to be able to offer you the best of CISCO solutions. Among these solutions, Switches and switches, Wifi access points and Routers.
Denial of service (DDoS) is a malicious attack aimed at making a service unavailable to legitimate users by overwhelming the targeted server with a large volume of traffic. Attackers often exploit networks of malware-infected machines, called botnets, to coordinate these massive attacks. The consequences of DDoS can be severe, ranging from temporary disruption of online services to considerable financial damage for businesses. To protect against such attacks, organizations must implement effective detection and mitigation solutions as well as incident response plans. This mode of attack is widely used by hackers via category security vulnerabilities “Zero Days” or lack of automatic updates.