Cisco patches a dozen router bugs

By Robert McMillan

September 23, 2009 03:19 PM ET

Comments

(0)

Top Stories

IDG News Service - Cisco Systems has released its twice-yearly set of security patches for its router firmware, fixing 12 security flaws in the products.

Cisco describes the bugs in 11 security advisories, released Wednesday, saying that they affect routers and switches that use the Cisco Unified Communications Manager, as well as a variety of services in the devices' underlying Cisco IOS operating system.

"Exploits of the individual vulnerabilities could result in two different impacts, a breach in confidentiality or a denial of service," Cisco said in a note describing the updates, posted to its Web site on Wednesday.

Among the patches is a fix for an IOS bug that could let an attacker bypass access control policies on devices that use the Object Groups for ACL feature, Cisco said. This could give an attacker access to parts of the network that they shouldn't be allowed to reach.

Cisco is patching so many bugs at once because, like other major technology vendors, it now releases its security updates on pre-set days. This makes it easier for IT staff to plan its patching.

Cisco's updates come on the fourth Wednesday of March and September each year, meaning that the next IOS patches are due March 24, 2010.

Comment Recommend Digg Twitter ShareThis

Email Print Send Feedback Reprints

Reprinted with permission from

IDG.net
Story copyright 2009 International Data Group. All rights reserved.

Jump to comments

Cisco Systems

Additional Resources

Microsoft

DirectAccess and UAG: Better Together

Here are some of the key reasons why you would want to run Unified Access Gateway with DirectAccess.

Microsoft

Case Study: Energy Firm Tightens Protection, Simplifies IT Work

Review how one energy firm tightened protection and simplified IT work using business-ready security solutions.

Sybase

NEXT-GENERATION MOBILITY PLATFORMS

In this white paper, IDC analyzes the role of next-generation mobile enterprise platforms as organizations seek a more strategic deployment of mobile solutions.

Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.