Cisco kicks off IOS Patch Wednesday - Network World

Skip Links

DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Security

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library.  Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.
Audio

Crackin' the Kraken bot. Listen now!

Network World's Newsmaker of the Week

Wireless dangers at airports. Listen now!

Network World Panorama

Additional Resources

RSS

FEATURED WHITEPAPERS

Fill the Gaps in Your Disaster Recovery Plan with Single Object Recovery for Active Directory NetPro

Most companies have a solid disaster recovery plan in place to handle a "complete failure" of its Active Directory, which is really quite rare. What most recovery plans are missing, and the most common scenario, is a means to efficiently restore single directory objects. In this paper, we'll explore what most disaster recovery plans already address, highlight potential weak points, and suggest solutions that help fill those gaps-without requiring you to completely re-do your existing plan.

RSS

FEATURED REPORTS

Executive Guide: Storage Heats Up HP

Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.

RSS

FEATURED WEBCASTS

Get Real-world Advice on how to Cost Effectively Consolidate your Data Center Novell

Discover the benefits of paravirtualization in this informative webcast today. This server virtualization-themed webcast not only explores how to improve virtualized server performance, but provides real-world user examples, explains how to optimize workloads and discusses the future of server virtualization. Focus on only the themes that interest you or watch all six consecutively for a full picture of how you can lower your costs significantly through consolidation and virtualization. Register below to learn more and be entered to win an Archos 605 Portable Media Player.

IT Buyer's Guides

View All Buyer's Guides

Free Newsletters

Sign up and receive the latest news, reviews and trends on your favorite technology topics

Save The Date!
What They Are Saying

You know Mike that you can't treat VDI environments like regular desktops. If you want to invest in VDI,...- Anony

Join the Discussion

Cisco kicks off IOS Patch Wednesday

Patches from Cisco, Mozilla, Gentoo, others Criminals target CA's BrightStor in new attack What spooks Microsoft's chief security advisor, and other interesting reading
Security: Threat Alert By Jason Meserve , Network World , 03/27/2008
  • Social Web 
  • Email 
  • Feedback 
  • Close

Cisco's first Patch Wednesday produces five IOS alerts
Cisco Wednesday 'celebrated' its first six-monthly patch schedule for IOS by delivering five separate security alerts. The alerts affect Cisco IOS Multicast VPN (MPVN); IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Router Switch Processor 720; IOS user datagram protocol delivery; and IOS' Data-link Switching feature. Cisco Subnet, 03/26/08.

Cisco advisories:

Cisco IOS Multicast Virtual Private Network (MVPN) Data Leak

Cisco IOS User Datagram Protocol Delivery Issue For IPv4/IPv6 Dual-stack Routers

Cisco IOS Virtual Private Dial-up Network Denial of Service Vulnerability

Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS

Vulnerability in Cisco IOS with OSPF, MPLS VPN, and Supervisor 32, Supervisor 720, or Route Switch Processor 720
**********

Mozilla fixes 10 Firefox flaws, half seen as 'critical'
Mozilla yesterday patched 10 vulnerabilities, half of them marked "critical," in its open-source browser as it updated Firefox to Version 2.0.0.13. The new Mozilla Messaging Inc. spin-off, however, was not able to provide a matching update to its Thunderbird e-mail client, which shares five of the Firefox flaws that were fixed. Computerworld, 03/26/08.

Firefox 2.0.0.13 release notes
**********

Two new fixes from Gentoo:

Wireshark (denial of service)

MIT Kerberos 5 (multiple flaws)
**********

Two new updates from Mandriva:

wml (symlink attack, file overwrite)

bzip2 (denial of service)
**********

Three new patches from Debian:

cupsys (multiple flaws)

serendipity (cross scripting flaw)

debian-goodies (elevated privileges)
**********

Two new updates from Ubuntu:

Firefox (multiple flaws)

bzip2 (denial of service)
**********

Two new updates from rPath:

Ruby (information disclosure)

gnome-ssh-askpass (session hijack)
**********

Today's malware news:

Criminals target CA's BrightStor in new attack
Just days after Microsoft warned of attacks targeting its Jet Database Engine software, cybercriminals have found a new program to attack: CA's BrightStor ARCserve Backup. The new attack was reported Monday by Symantec, which said that a malicious Web page with a .cn domain was serving the attack code. IDG News Service, 03/25/08.

1 | 2 | 3 |  Next >
Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.
First Name
Last Name
E-mail
Zip Code