Cisco fixes IOS vulnerability

Cisco is warning customers of denial-of-service flaws in its IOS software and Unified Content Center products.

  • E-Mail
By  Published  January 18, 2007

Cisco is warning customers of denial-of-service flaws in its IOS software and Unified Content Center products.

In an advisory issued last week, the networking giant said its Unified Content Center Enterprise, Unified Content Center Hosted, IP Contact Center Enterprise and IP Contact Center Hosted products are all affected by a vulnerability in the Java application programming interface (JTAPI) gateway, which could be exploited to make the gateway restart.

IOS is the software that powers the majority of Cisco's router and switching products. Cisco has patched a vulnerability in the data-link switching feature in some versions that could enable attackers to launch denial-of-service attacks, the company also said in its advisory last week.

On devices running vulnerable versions of IOS, attackers could exploit the flaw remotely without being logged in, but would need to establish a data-link switching connection to the device, Cisco said.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code