Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search


Cisco & Microsoft Vulnerabilities Warning

Symantec Security Response - Cisco & Microsoft Vulnerabilities

Two serious new security Vulnerabilities were announced yesterday affecting both the Microsoft Windows operating system and Cisco routing equipment. Due to the severity of these Vulnerabilities and the importance of installing these security patches, Symantec has raised its DeepSight ThreatCon level from 1 to 2.

Microsoft Windows MSRPC Buffer Overflow Vulnerability A new security vulnerability affecting the core part of the Microsoft Windows operating system was announced. It is a significant vulnerability because it does not require any prior authentication for an attacker to exploit it. An attacker with the ability to exploit this vulnerability only requires the ability to connect to port TCP/135 on a vulnerable system. Once exploited, the attacker will have full access to the targeted system.

The vulnerability affects the following versions of the operating system: Microsoft Windows NT 4.0 Microsoft Windows NT 4.0 Terminal Services Edition Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003

Symantec recommends that administrators and users patch their systems immediately by going to the Microsoft Web site

Organisations and consumers are encouraged to implement firewalls to prevent systems from being compromised. Administrators can block TCP port 135 at the firewall to prevent systems that are behind the firewall from being attacked. Personal Firewall products can also assist in blocking traffic to this service.

Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 Packet Cisco has published information regarding a denial of service vulnerability in Cisco IOS versions 11.x and 12.x. This vulnerability affects all Cisco hardware running a vulnerable IOS version, which is configured to process IPv4 traffic. This is a serious vulnerability as it affects a significant number of infrastructure devices, on both corporate, and core Internet networks.

Full details and affected versions are available from Cisco at:

Specially crafted IPv4 packets with modified headers will trigger this issue. A power cycling of an affected device is required to regain normal functionality. Due to the critical nature of the affected Cisco devices, administrators are strongly urged to upgrade to the latest version of Cisco IOS as soon as possible.

Symantec Security Response will monitor any unusual activities through its 19,000 sensors and Security Operation Centers worldwide. We will continue to provide you with any updates.

© Scoop Media

Business Headlines | Sci-Tech Headlines


Postnatal Depression: 'The Thief That Steals Motherhood' - Alison McCulloch

Post-natal depression is a sly and cruel illness, described by one expert as ‘the thief that steals motherhood’, it creeps up on its victims, hiding behind the stress and exhaustion of being a new parent, catching many women unaware and unprepared. More>>


DIY: Kiwi Ingenuity And Masking Tape Saves Chick

Kiwi ingenuity and masking tape has saved a Kiwi chick after its egg was badly damaged endangering the chick's life. The egg was delivered to Kiwi Encounter at Rainbow Springs in Rotorua 14 days ago by a DOC worker with a large hole in its shell and against all odds has just successfully hatched. More>>


Trade: Key To Lead Mission To India; ASEAN FTA Review Announced

Prime Minister John Key will lead a trade delegation to India next week, saying the pursuit of a free trade agreement with the protectionist giant is "the primary reason we're going" but playing down the likelihood of early progress. More>>



MYOB: Digital Signatures Go Live

From today, Inland Revenue will begin accepting “digital signatures”, saving businesses and their accountants a huge amount of administration time and further reducing the need for pen and paper in the workplace. More>>

Oil Searches: Norway's Statoil Quits Reinga Basin

Statoil, the Norwegian state-owned oil company, has given up oil and gas exploration in Northland's Reinga Basin, saying the probably of a find was 'too low'. More>>


Modern Living: Auckland Development Blowouts Reminiscent Of Run Up To GFC

The collapse of property developments in Auckland is "almost groundhog day" to the run-up of the global financial crisis in 2007/2008 as banks refuse to fund projects due to blowouts in construction and labour costs, says John Kensington, the author of KPMG's Financial Institutions Performance Survey. More>>


Health: New Zealand's First ‘No Sugary Drinks’ Logo Unveiled

New Zealand’s first “no sugary drinks logo” has been unveiled at an event in Wellington... It will empower communities around New Zealand to lift their health and wellbeing and send a clear message about the damage caused by too much sugar in our diets. More>>


Get More From Scoop

Search Scoop  
Powered by Vodafone
NZ independent news