Cisco patches a dozen router bugs

12 security flaws are fixed in the semi-annual update

Robert McMillan (IDG News Service)
24 September, 2009 07:19
Comments

Cisco Systems has released its twice-yearly set of security patches for its router firmware, fixing 12 security flaws in the products.

Cisco describes the bugs in 11 security advisories, released Wednesday, saying that they affect routers and switches that use the Cisco Unified Communications Manager, as well as a variety of services in the devices' underlying Cisco IOS operating system.

"Exploits of the individual vulnerabilities could result in two different impacts, a breach in confidentiality or a denial of service," Cisco said in a note describing the updates, posted to its Web site on Wednesday.

Among the patches is a fix for an IOS bug that could let an attacker bypass access control policies on devices that use the Object Groups for ACL feature, Cisco said. This could give an attacker access to parts of the network that they shouldn't be allowed to reach.

Cisco is patching so many bugs at once because, like other major technology vendors, it now releases its security updates on pre-set days. This makes it easier for IT staff to plan its patching.

Cisco's updates come on the fourth Wednesday of March and September each year, meaning that the next IOS patches are due March 24, 2010.

Come socialise with us! Facebook | LinkedIn

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email ARN
Follow ARN on twitter

More about: Cisco, Cisco Systems, etwork

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Latest Stories

Community Comments

"Yes, I agree the Samsung tablet is a good product with some ..."

REVIEW: Is the Samsung Galaxy Tab 10.1 the new king of Android tablets?
"Has anyone seen the new "Friend Project" social network site? It copies ..."

MySpace: The next hot social network?
"It should read as Australasian owned, not Australian owned."

Datacom joins AFP, Microsoft and ninemsn to support ThinkUKnow
"the new lenovo x130e 's r alright but they blocked eveything '"

Lenovo awarded NSW DET netbook contract
"Have you any idea just about any cheap�discount�hotels in Espoo, Finland?"

Telstra-NBN Co wholesale broadband agreement “imminent”

Tags: unified communications, security, routers, exploits and vulnerabilities, Cisco, bugs

ARN Directory | Distributors relevant to this article

Alloys , Express Data , Express Online , Ingram Micro Australia , Multimedia Technology , Simms International (For Simms International please see Express Online) , Wavelink , Westcon Group , Fusion Power Systems

Most Read

Get exclusive access to ARN's news, research and invitation only events.

Latest Jobs

Most Commented

ARN Distributor Directory

Find distributors by name | vendor | location

Channel Deals

AVG (AU/NZ) Pty Ltd

AVG Wants You!

More details »

ARN Vendor Directory

Find vendors by name | category

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

Featured Whitepapers

HiveManager Online: Less Dollars, More Sense

Today’s de facto standard controller-based Wi-Fi infrastructure model is just too complicated, too expensive, and too unreliable. It’s common for enterprise and mid-market network operators alike to get caught in a crossroads of compromises involving costs, complexity, features, and reliability.

Most Popular Whitepapers