GitHubRework `clamd` command protocol (insecure by design) · Issue #1169 · Cisco-Talos/clamav
Recent searches
Search options
#cisco
1 post1 participant0 posts today
Critical #Cisco Smart Licensing Utility flaws now exploited in attacks
BleepingComputer · Critical Cisco Smart Licensing Utility flaws now exploited in attacks
I've got an old #cisco #ASA 5512-x laying around that I figured might come in handy some day.
My brother recently sent me an article to a fellow who got #opnSense running on it, and of course I had to bite.
It was almost too easy! I tracked down an ancient VGA to IDC connector, installed it on the motherboard, and then changed the BIOS around to boot from a thumbdrive. OpnSense installed without issue, and BAM I have a 7-port gigabit router with a #xeon processor, 8GB of DDR3 and a 128GB SSD.
I haven't tested yet, but supposedly these bad boys can push *almost* full line speed.
Not too bad for free! It appears these can be had online for under $50 all day long.
Come and work with me and my fabulous network team in Loughborough, UK!
Happy to answer questions in public or via DM
https://www.jobs.ac.uk/job/DLZ032/it-specialist-network-and-smart-campus
BleepingComputer · CISA tags Windows, Cisco vulnerabilities as actively exploited
Cisco addressed command injection and denial-of-service (DoS) vulnerabilities in some models of its Nexus switches.
Security Affairs · Cisco fixed command injection and DoS flaws in Nexus switchesCisco addressed command injection and denial-of-service (DoS) vulnerabilities in some models of its Nexus switches.
Replied in thread
@CdnCurmudgeon Database. #Cisco. They are #fascists
Playing with cell access via Cisco again. A complicated but fun combo. (Aside from the internet access, I ***LOVE*** being able to send sms messages from my lan.)
The European Parliament tells staff to use Teams, Cisco, and Signal.
With fears rising about the security of online communications, the European Parliament emailed all its staff on 13 February recommending which tools to use.
The endorsement of Signal could be considered a snub to rival direct-messaging apps such as Whatsapp, Messenger, and Telegram.
Wij protesteren tegen netwerkgigant #Cisco bij hun evenement #CiscoLive in de RAI in Amsterdam. Cisco doet Israëlische security, verkoopt servers en netwerken, gezichtsherkenningsoftware. Iedereen, dus ook Cisco, moet Israëlische boycotten #DumpCisco #FreePalestine #EndColonialism #EndFossilFuelColonialism
Continued thread
So, these tools #cisco were telling us we can use to monitor and manage energy use are natural language based, ie they use #LLM and #AI to produce those reports. I asked if, given the 10x power requirement claim they opened the session with, we can disable the natural language component and just use manually written queries?
“Thank you for your feedback, we’ll look into it…but as AI becomes more efficient that shouldn’t be necessary in the future” 
Wow, #cisco reckon a #Google #LLM driven web search consumes ten times more electricity than a traditional Google search 
Given how much they’re pushing #AI themselves, I think it’s significant that they didn’t say “AI search”, but LLM. Can’t tarnish the product your colleagues are trying to flog in the next room
(I’m in a datacentre sustainability session, btw)
FFS, #Duo, if I wanted my accounts backed up to Google I'd have used Google Authenticator instead, so stop asking!
#2FA #Cisco #enshittification
Replied in thread
@fosdem #FOSDEM ask: If you have any #Cisco #SPA500 series #VoIP phones you don't need any more or might be cycling out of use over the year, please get in contact with us / me.
We have had fixed phones at a few key locations this past weekend and want to expand the use of static phones. So an upper bound of maybe 50-60 phones would be very useful to us accounting for all devrooms and for a few spares.
Edit: Retoots explicitly appreciated.
Replied in thread
@icedquinn +9001%
- Also no standard laced with #patents should be accepted - period!
I'm talking about you, #Cisco!
https://en.wikipedia.org/wiki/Common_Address_Redundancy_Protocol
https://en.wikipedia.org/wiki/VRRP
en.wikipedia.orgCommon Address Redundancy Protocol - Wikipedia
With #cisco getting a hold of arguably one of the most efficient #kubernetes CNIs, it makes me wonder how it's going to affect (or not) the whole CNI selection.
#Cisco hat auf eine kritische Sicherheitslücke in ihrer Meeting Management Software hingewiesen. Die Schwachstelle in der REST-API könnte es entfernten Angreifern ermöglichen, ihre Zugriffsrechte auf betroffenen Geräten von Standardbenutzern auf Administratoren zu erhöhen. Cisco hat außerdem Sicherheitsupdates für Broadworks und ClamAV bereitgestellt. Ein echtes Risiko, das man nicht ignorieren sollte. #CyberSecurity
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmm-privesc-uy2Vf8pc
CiscoCisco Security Advisory: Cisco Meeting Management REST API Privilege Escalation VulnerabilityA vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affected device.
This vulnerability exists because proper authorization is not enforced upon REST API users. An attacker could exploit this vulnerability by sending API requests to a specific endpoint. A successful exploit could allow the attacker to gain administrator-level control over edge nodes that are managed by Cisco Meeting Management.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmm-privesc-uy2Vf8pc
Continued thread
Coincidentally, there was another way to get #Cisco IOS version info. However, it required the target router to have at least some IP #multicast functionality running on any interface.
The trick here was to to use a little known DVMRP debugging message wrapped in IGMP, which should really never be relayed across router interfaces. This debugging capability was employed by the even lesser known mrinfo debugging tool. The entire mechanism was specified in a long-expired, never finished #IETF Internet-Draft, but the code for it ended up in all Juniper and Cisco routers. A paper contains some additional detail: https://dataplane.org/jtk/publications/ccr201701-igmp.pdf