Topics:
Cisco patches bugs for authorization, VPN
Cisco Systems released new patches for bugs in its operating system authorization features and also for a VPN weakness. The authorization software has bugs in the Tool Command Language shell which could inadvertently grant higher-level privileges. Also, some Cisco VPN software is vulnerable to being remotely tricked into resetting. The method can be used for denial-of-service attacks.
For more on the patches:
- see this Computerworld article
ALSO: Rootkits headed for BIOS. Article
Comments