TTCSIRT-030.080417: TT-CSIRT Advisory – CISCO Security Updates

TTCSIRT-030.080417: TT-CSIRT Advisory – CISCO Security Updates

Cisco has released updates to address several vulnerabilities affecting the following products:

a) Identity Services Engine Authentication – a vulnerability in the authentication module of Cisco Identity Services Engine could allow an unauthenticated, remote attacker to bypass local authentication. This is due to improper handling of authentication requests and policy assignment for externally authenticated users. An attacker could exploit this vulnerability by authenticating with a valid external user account that matches an internal username and incorrectly receiving the authorization policy of the internal account. An exploit could allow the attacker to have Super Admin privileges for the ISE Admin portal.

b) Videoscape Distribution Suite Cache Server – the vulnerability is due to excessive mapped connections exhausting the allotted resources within the system. An attacker could exploit this vulnerability by sending large amounts of inbound traffic to a device with the intention of overloading certain resources. A successful exploit could cause the device to reload, resulting in a DoS condition.

Further information on these vulnerabilities and how they can be patched can be found on the CISCO Website via https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170802-ise or https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170802-vds