lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-id: <201601131144.6.aironet@psirt.cisco.com>
Date: Wed, 13 Jan 2016 11:44:31 -0500
From: Cisco Systems Product Security Incident Response Team <psirt@...co.com>
To: bugtraq@...urityfocus.com
Cc: psirt@...co.com
Subject: Cisco Security Advisory: Cisco Aironet 1800 Series Access Point Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Cisco Aironet 1800 Series Access Point Denial of Service Vulnerability

Advisory ID: cisco-sa-20160113-aironet

Revision 1.0

For Public Release 2016 January 13 16:00 UTC (GMT)

+---------------------------------------------------------------------

Summary
=======

A vulnerability in the IP ingress packet handler of Cisco Aironet 1800 
Series Access Point devices could allow an unauthenticated, remote 
attacker to cause a complete denial of service (DoS) condition.

The vulnerability is due to improper input validation of IP packet
headers. An attacker could exploit this vulnerability by sending a
crafted IP packet to an affected device. An successful exploit could 
allow the attacker to cause the device to reload unexpectedly.

Cisco has released software updates that address this vulnerability. 
There are no workarounds that mitigate this vulnerability. 

This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-aironet
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (SunOS)
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=lY3/
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ