Sep
5
2008
Cisco Secure ACS EAP Parsing Vulnerability
Cisco-vulnerabilities

A new Cisco ACS vulnerability is found by Gabriel Campana and Laurent Butti. Cisco Secure ACS does not correctly parse the length of EAP-Response packets which allows remote attackers to cause a denial of service and possibly execute arbitrary code. The affected products are all versions of Cisco Secure ACS that support EAP.

Sep
4
2008
Cisco ASA and PIX Security Appliances Multiple Vulnerabilities
Cisco-vulnerabilities

Some vulnerabilities have been reported in Cisco ASA and PIX appliances, which can be exploited by malicious people to disclose sensitive information, and by malicious users and malicious people to cause a DoS (Denial of Service).

Sep
3
2008
How to test Cisco WebEx Meeting Manager vulnerability
cisco-exploit

Searching more info about Cisco WebEx Meeting Manager vulnerability, I have found this exploit. Only for testing.

Sep
3
2008
Cisco WebEx Meeting Manager (atucfobj.dll) ActiveX Remote BOF Exploit
Cisco-vulnerabilities

From the Cisco Security Advisory : A buffer overflow vulnerability exists in an ActiveX control used by the WebEx Meeting Manager. Exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the user client machine. The WebEx Meeting Manager is a client-side program that is provided by the Cisco WebEx meeting service. The Cisco WebEx meeting service automatically downloads, installs, and configures Meeting Manager the first time a user begins or joins a meeting.

Sep
3
2008
CiscoZine.com is UP ;-)
Ciscozine-com-is-up

Hi to all, I have decided to create this blog to share with you everything about Cisco Tech. At the present time, I have a CCNA certification and I’m finishing CCNP certification. My final goal is take CCIE security (I hope…).