More patches from Cisco
A week after its latest patch day, network equipment manufacturer Cisco has published three additional advisories that discuss and provide patches to close holes in various products. The manufacturer closed five holes in the Firewall Services Module (FWSM) in its 6500 Catalyst switches and 7600 router series. Attackers can use one of the holes to get around the TACACS+ authentication and obtain administrative access to devices. The other four holes can be used to conduct denial-of-service (DOS) attacks.
Cisco also had to patch the TACACS+ authentication hole in its ASA 5500 Series Adaptive Security Appliances and the Catalyst 6500 Series ASA Services Module. The third advisory concerns a directory-traversal hole in the Network Admission Control (NAC) Manager. Attackers could use the vulnerability to gain access to critical information, such as password files and system logs, via TCP port 443. Cisco has published patches and, in most cases, workarounds for all of the holes.