Cisco discloses arbitrary execution in SD-WAN Solution and Webex

CHRIS DUCKETT | January 24, 2019

article image
Cisco has disclosed a critical vulnerability in its SD-WAN Solution that allows for arbitrary code execution as the root user. Improper bounds checking by the vContainer allowed for potential authenticated attackers to send malicious files to an affected instance, which can cause a buffer overflow on the vContainer and create a situation for arbitrary code execution as root, the company said in its advisory.Cisco vSmart Controllers running a SD-WAN Solution release prior to 18.4.0 were hit, the company said, with only vContainers being affected."The fixed software must be deployed by Cisco at the request of the customer. There is no fixed software for Cisco customers to download and deploy for this vulnerability," the company said."Customers must engage their Cisco support contact to ensure the deployment of the latest software fix.

Spotlight

Emergent Networks

Since 1985 Emergent Networks, LLC has been providing technology consulting and solutions for customers by leveraging current and emerging technologies relevant to your business. We provide consulting and services that deliver real results.

OTHER ARTICLES

Experts Analysis Report on Report on Server Virtualization Software Market

Article | March 20, 2020

The Global Server Virtualization Software Market Is Expected To Register A CAGR Of +8.78% During The Forecast Period (2020 – 2025). Global Server Virtualization Software Market is expected to develop at a substantial CAGR in the coming years. Virtualization is a process of creating a software-based or virtual representation of IT resources. Virtualization technology has been amazingly effective in reducing IT expenses while simultaneously increasing the efficiency of the equipment. This virtualization software market analysis considers sales from network function virtualization, desktop virtualization, software-defined storage, and server virtualization.

Read More

Getting Above the Silos: The Rise of the Logical Data Fabric

Article | April 2, 2020

With so much valuable data potentially available, it can be frustrating for organizations to discover that they can’t easily work with it because it’s stuck in disconnected silos. Limited data access is a problem when organizations need timely, complete views of all relevant data about customers, supply chains, business performance, public health, and more, to make informed decisions. We need only look at the current COVID-19 pandemic to understand the importance of being able to view and share data across silos. One of the hottest topics in data architecture right now is data fabric. The notion of a data fabric is becoming important as organizations put more data in multiple cloud-based storage platforms, which can add to existing on-premises data silo problems. TDWI research finds that disconnected data silos are one of the biggest obstacles organizations face as they try to enable faster data insights. In the industry, “data fabric” is variously called an architecture, a framework – and of course, a fabric. With data fabric, adherents aim to provide a more universal and holistic approach to integrating diverse components of physically distributed data environments. Ideally, a data fabric will use services to integrate the necessary components so that data flows more easily and users and applications do not have to use specialized code to access each data silo.

Read More

ProtonVPN iOS app now supports the OpenVPN protocol

Article | May 7, 2020

Your ProtonVPN iOS app is now better equipped to fight censorship and offers more flexible connection options with the launch of OpenVPN for iOS. The OpenVPN protocol is one of the best VPN protocols because of its flexibility, security, and because it is more resistant to blocks. You now have the option to switch between the faster IKEv2 protocol and the more stable and censorship-resistant OpenVPN protocol.

Read More

Security Cited as Top Public Cloud Inhibitor

Article | March 25, 2020

Barracuda Networks commissioned a survey to explore the enterprise digital transformation in which the use of public cloud computing platforms is key, seeking to gauge the impact of security roadblocks and how they can be overcome. The unsurprising results confirmed that organizations are indeed moving their computing infrastructure to public clouds, and that security is the top concern restricting faster adoption. What's more, the number of organizations that report being attacked by cybersecurity villains has increased, affecting three quarters of respondents, up from 56 percent in 2017.

Read More

Spotlight

Emergent Networks

Since 1985 Emergent Networks, LLC has been providing technology consulting and solutions for customers by leveraging current and emerging technologies relevant to your business. We provide consulting and services that deliver real results.

Events