A number of Cisco vulnerabilities have recently been made more dangerous by the public release of proof-of-concept code, which can be utilized to exploit these vulnerabilities. Anyone using one of the many vulnerable products needs to take immediate steps to fix the vulnerabilities or confirm that the vulnerabilities have already been fixed or mitigated.
There are also two recently announced vulnerabilities that require attention, but no published exploits have been released for these flaws.
Details
Older threats that now have public exploits
A number of exploits for known Cisco vulnerabilities have recently been published. Here is the list as taken from a Cisco Security Notice:
Cisco 677/678 Telnet Buffer Overflow Vulnerability DoS
Cisco IOS Router DoS Vulnerability, Cisco IOS HTTP Server
Cisco IOS HTTP Auth Vulnerability
Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability, IOS HTTP Authorization Vulnerability
Cisco Catalyst SSH Protocol Mismatch DoS Vulnerability
Cisco 675 Web Administration DoS Vulnerability (“Cisco is currently researching this vulnerability further. Mitigation methods have been available for some time such as setting the Web server to listen on a different port.”)
Cisco Catalyst 3500 XL Remote Arbitrary Command Vulnerability
Cisco IOS Software HTTP Request DoS Vulnerability
Cisco 514 UDP Flood DoS Vulnerability, a vulnerability in the IOS Firewall feature set CiscoSecure ACS for Windows NT Server DoS Vulnerability
New threats
One of the new flaws to look out for is a Cisco Content Service Switch Management Port UDP remotely exploitable DoS vulnerability, which has been flagged by SecurityFocus. The relevant Cisco Security Bulletin contains more details.
Applicability (new threats only)
Cisco Content Service Switch Management Port UDP
Cisco CSS11000
Cisco CSS11050
Cisco CSS11150
Cisco CSS11800
Cisco CSS11100 (added in the Cisco Security Advisory revision)
OpenSSL vulnerability (taken from the Cisco Bulletin)
Cisco IOS 12.2ZA
Cisco IOS 12.2SY
Cisco IOS 12.1E
Cisco PIX Firewall
Cisco Firewall Services Module for Cisco Catalyst 6500 Series and Cisco 7600 Series routers
Cisco MDS 9000 Series Multilayer Switch
Cisco Content Service Switch 11000 and 11500 series
Cisco Global Site Selector 4480 and 4490
Cisco Content Service Switch Secure Content Accelerator versions 1 and 2
CiscoWorks Common Services 2.2 and CiscoWorks Common Management Foundation 2.1
Cisco Access Registrar
Cisco Call Manager
Cisco Okena Stormwatch 3.2
Cisco Application and Content Networking Software (ACNS)
Cisco Threat Response