Cisco Security Advisory: Cisco Application Control Engine Administrator IP Address Overlap Vulnerability

From: Cisco Systems Product Security Incident Response Team <psirt@cisco.com>
To: bugtraq@securityfocus.com
Cc: psirt@cisco.com
Subject: Cisco Security Advisory: Cisco Application Control Engine Administrator IP Address Overlap Vulnerability
Date:


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Cisco Application Control Engine Administrator IP Address Overlap Vulnerability

Advisory ID: cisco-sa-20120620-ace

Revision 1.0

For Public Release 2012 June 20 16:00  UTC (GMT)
+---------------------------------------------------------------------
 
Summary
=======

A vulnerability exists in Cisco Application Control Engine (ACE)
software.  Administrative users may be logged into an unintended
context (virtual instance) on the ACE when running in multicontext
mode.

Cisco has released free software updates that address this
vulnerability.  A workaround is available for this vulnerability. 

This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ace
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org

iF4EAREIAAYFAk/hxbUACgkQQXnnBKKRMND+xAD+Kyl1XE7s35MmPSXKKRu8wCyv
p1kEyH7KVtiqj2gBAcYA/0j0LhJpa77zHF0ZpOJbDrNwT1ccWUDHdr8jjD/yv+aP
=UyTX
-----END PGP SIGNATURE-----





Copyright © 1995-2018 LinuxRocket.net. All rights reserved.