Описание
The DLSw implementation in Cisco IOS does not initialize packet buffers, which allows remote attackers to obtain sensitive credential information from process memory via a session on TCP port 2067, aka Bug ID CSCur14014.
The DLSw implementation in Cisco IOS does not initialize packet buffers, which allows remote attackers to obtain sensitive credential information from process memory via a session on TCP port 2067, aka Bug ID CSCur14014.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-7992
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98724
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7992
- http://tools.cisco.com/security/center/viewAlert.x?alertId=36453
- http://www.securityfocus.com/bid/71145
- http://www.securitytracker.com/id/1031220
Связанные уязвимости
nvd
около 11 лет назад
The DLSw implementation in Cisco IOS does not initialize packet buffers, which allows remote attackers to obtain sensitive credential information from process memory via a session on TCP port 2067, aka Bug ID CSCur14014.