Cisco Patches Three Security Vulnerabilities

May 22, 2008

Cisco has released a trio security patches that fix denial-of-service bugs and a privilege escalation vulnerability.The bugs -- which Cisco said were discovered by its own researchers -- affect the SSH (Secure Shell) software in Cisco's Internetwork Operating System (IOS), used to power its routers, and in the Cisco Service Control Engine, which is provides carrier-grade networking services. The privilege escalation vulnerability affects its Voice Portal automated telephone customer service software.

While there are no immediate workarounds, Cisco has released free, downloadable software upgrades that address the Service Control Engine and Voice Portal vulnerabilities. The IOS bug is of particular interest to security researchers at large, who have been looking into the affects of malicious software on such an operating system.Network World, ChannelWeb

More Insights

White Papers

More White Papers

Webinars

More Webinars

Reports

More Reports

Editors' Choice

How to Turn a Coke Can Into an Eavesdropping Device

Robert Lemos, Contributing Writer, Dark Reading

iPhones Open to Attack Even When Off, Researchers Say

Dark Reading Staff, Dark Reading

Mastering the New CISO Playbook

Chaim Mazal, Senior VP of Technology and CISO, Kandji

What to Patch Now: Actively Exploited Windows Zero-Day Threatens Domain Controllers