Cisco has released a security update to address a flaw in its line of wireless LAN controllers.The company has issued security fixes to address a number of flaws with impacts ranging from denial-of-service to complete control of the device by an attacker.Cisco said that the vulnerabilities mainly centered around the handling of HTTP and HTTPS commands, as well as a flaw concerning the handling of SSH requests. Attackers can target the flaws by sending malformed code or specially-crafted commands, causing a denial-of-service and possibly giving the attacker network access.Among the products said to be vulnerable to one or more of the attacks are Cisco's 1500, 2000, 2100, 4100, 4200 and 4400 Wireless Service Module,s as well as the company's Integrated Service Routers and 3750G wireless LAN controllers. The company is advising administrators to upgrade the vulnerable devices to the latest software versions or implement company-recommended workarounds.Cisco's fix is the latest in what could be a very busy week for some administrators. Overnight, Microsoft issued a pair of out of cycle patches to address vulnerabilities which have been actively targeted in malware attacks.
Copyright ©v3.co.uk
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.