Cisco warns of Content Delivery System flaw

Cisco has warned of a flaw in its Content Delivery System that could allow an attacker to remotely access a targeted system.

The company said in a security advisory that a successful attack on the Internet Streamer application could allow access to sensitive administrative components such as password files and system logs.

This could, in turn, leave the system vulnerable to future attack from the compromised accounts. All versions of Internet Streamer are believed to be vulnerable.

Cisco has included a patch to address the vulnerability, and administrators are advised to update to version 2.5.7 or later to protect against the attack.

Those who have not yet installed the update can guard against the attack by setting service rules to deny access to sensitive files through the system manager tool.