Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 3.1.xSG

回避策：アップデートにて対応, 3.2.0SG以降へのアップデートにて対応

脆弱性：DoS攻撃, NAT変換エラー, デバイスのリロード, メモリリーク, メモリの浪費, 不正パケット

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-nat.shtml

http://secunia.com/advisories/46179/

http://secunia.com/advisories/46225/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0946

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3276

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3277

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3278

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3279

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3280

CVE：CVE-2011-0946, CVE-2011-3276, CVE-2011-3277, CVE-2011-3278, CVE-2011-3279, CVE-2011-3280

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.x/15.0/15.1

回避策：アップデートにて対応

脆弱性：DoS攻撃, 未特定のエラー, 不正パケット, デバイスのリロード

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipv6.shtml

http://secunia.com/advisories/46199/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0944

CVE：CVE-2011-0944

危険性：Medium Risk

Cisco Unified Communications Manager, Cisco Intercompany Media Engine

ソフト名：Cisco Unified Communications Manager 6.x/7.x/8.x, Cisco Intercompany Media Engine 8.x

回避策：6.1(5)SU3, 7.1(5b)SU4, 8.0(3a)SU2, 8.5(1)SU2, or 8.6(1)へのアップデートにて対応, 8.5.1へのアップデートにて対応

脆弱性：DoS攻撃, クラッシュ, 不正SAFパケット, デバイスのリロード

ソース：

http://www.cisco.com/en/US/products/sw/voicesw/ps556/index.html

http://www.cisco.com/en/US/products/ps10669/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110824-cucm.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110824-ime.shtml

http://secunia.com/advisories/45738/

http://secunia.com/advisories/45743/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2561

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2562

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2563

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2564

CVE：CVE-2011-2561, CVE-2011-2562, CVE-2011-2563, CVE-2011-2564

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.2(58)SE

回避策：12.2(58)SE1へのアップデート, CSCto62631にて対応

脆弱性：DoS攻撃, 不特定のエラー, デバイスのリロード

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCto62631

http://www.cisco.com/en/US/docs/switches/lan/cisco_ie3000/software/release/12.2_58_se/release/notes/OL24335.html

http://secunia.com/advisories/45761/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1624

CVE：CVE-2011-1624

危険性：Medium Risk

Cisco Content Services Gateway

ソフト名：Cisco Content Services Gateway (CSG2)

回避策：あり

脆弱性：DoS攻撃, デバイスのリロード

ソース：http://www.cisco.com/en/US/products/sw/wirelssw/ps779/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110706-csg.shtml

http://secunia.com/advisories/45148/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2064

CVE：CVE-2011-2064

危険性：Medium Risk

Cisco Wireless LAN Controller Module

ソフト名：Cisco 2100 Series Wireless LAN Controller, Cisco 526 Wireless Express Mobility Controller, Cisco Wireless LAN Controller Module

回避策：あり

脆弱性：DoS攻撃, 不特定のエラー, デバイスのリロード

ソース：http://www.cisco.com/en/US/products/ps7206/index.html

http://www.cisco.com/en/US/prod/collateral/wireless/ps7306/ps7320/ps7339/product_data_sheet0900aecd8060c22b.html

http://www.cisco.com/en/US/prod/collateral/modules/ps2797/ps6730/prod_bulletin0900aecd8036444e.html

http://www.cisco.com/warp/public/707/cisco-sa-20110427-wlc.shtml

http://secunia.com/advisories/44384/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1613

CVE：CVE-2011-1613

危険性：Medium Risk

Cisco Firewall Services Module

ソフト名：Cisco Firewall Services Module (FWSM) 3.1(20)/3.2(20)/4.0(15)/4.1(5)未満
回避策：アップデートにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/hw/modules/ps2706/ps4452/index.html
http://www.cisco.com/en/US/prod/collateral/modules/ps2706/product_bulletin_c25-478751.html
http://www.cisco.com/warp/public/707/cisco-sa-20110223-fwsm.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6e148.shtml
http://secunia.com/advisories/43453/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0394
CVE：CVE-2011-0394
危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 15.0
回避策：アップデートにて対応
脆弱性：セキュリティ制限の回避, DoS攻撃, デバイスのリロード, デバイスのクラッシュ, メモリの浪費, メモリリーク, メモリの断片化
ソース：http://www.cisco.com/en/US/products/ps10591/index.html
http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf
http://secunia.com/advisories/42917/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5038
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5040
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4685
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4686
CVE：CVE-2009-5038, CVE-2009-5040, CVE-2010-4683, CVE-2010-4685, CVE-2010-4686
危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.4T
回避策：cisco-sa-20100922-sslvpnにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a312.shtml
http://www.securityfocus.com/bid/43390
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2836
http://secunia.com/advisories/41552
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2836
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.1～12.4ye
回避策：cisco-sa-20100922-natにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a311.shtml
http://www.securityfocus.com/bid/43393
http://www.securityfocus.com/bid/43400
http://www.securityfocus.com/bid/43401
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2831
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2832
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2833
http://secunia.com/advisories/41539
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2831, CVE-2010-2832, CVE-2010-2833
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.3T～12.4ye
回避策：cisco-sa-20100922-igmpにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a310.shtml
http://www.securityfocus.com/bid/43396
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2830
http://secunia.com/advisories/41551
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2830
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.2sy～12.4yb
回避策：cisco-sa-20100922-sipにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a30f.shtml
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2834
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2835
http://secunia.com/advisories/41549
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2834, CVE-2010-2835
危険性：Low Risk

Cisco 2000/2100/4100/4400 Wireless Lan Controller

ソフト名：Cisco 2000/2100/4100/4400 Wireless Lan Controller 4.2/5.0～5.2
回避策：cisco-sa-20100908-wlcにて対応
脆弱性：DoS攻撃, 不特定のエラー, 権限の昇格, セキュリティ制限の回避, デバイスのクラッシュ, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml
http://www.securityfocus.com/bid/43059
http://www.securityfocus.com/bid/43061
http://www.securityfocus.com/bid/43064
http://www.securityfocus.com/bid/43065
http://www.securityfocus.com/bid/43066
http://www.securityfocus.com/bid/43067
http://www.securityfocus.com/bid/43069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0574
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0575
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2841
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2842
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2843
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3033
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3034
http://secunia.com/advisories/41357
http://www.vupen.com/english/advisories/2010/2336
CVE：CVE-2010-0574, CVE-2010-0575, CVE-2010-2841, CVE-2010-2842, CVE-2010-2843, CVE-2010-3033, CVE-2010-3034
危険性：High Risk

3Com H3C S9500E

ソフト名：3Com H3C S9500E 1233
回避策：アップデートにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://support.3com.com/documents/H3C/switches/9500/H3C_S9500E_CMW5.20.R1233P01_Release_Notes.pdf
http://secunia.com/advisories/41266
危険性：Low Risk

Cisco ACE

ソフト名：Cisco ACE 4710～4710 A3(2.1)
回避策：cisco-sa-20100811-aceにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml
http://www.securityfocus.com/bid/42371
http://www.securityfocus.com/bid/42375
http://www.securityfocus.com/bid/42376
http://www.securityfocus.com/bid/42378
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2822
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2823
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2824
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2825
http://secunia.com/advisories/40963
http://www.vupen.com/english/advisories/2010/2075
CVE：CVE-2010-2822, CVE-2010-2823, CVE-2010-2824, CVE-2010-2825
危険性：Low Risk

Cisco ASA 5500

ソフト名：Cisco ASA 5500 7.0～8.2
回避策：cisco-sa-20100804-asaにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f12f.shtml
http://www.securityfocus.com/bid/42187
http://www.securityfocus.com/bid/42189
http://www.securityfocus.com/bid/42190
http://www.securityfocus.com/bid/42196
http://www.securityfocus.com/bid/42198
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1578
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1579
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1580
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1581
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2815
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2817
http://secunia.com/advisories/40842
http://www.vupen.com/english/advisories/2010/2014
CVE：CVE-2010-1578, CVE-2010-1579, CVE-2010-1580, CVE-2010-1581, CVE-2010-2814, CVE-2010-2815, CVE-2010-2816, CVE-2010-2817
危険性：High Risk

Cisco Firewall Services Module

ソフト名：Cisco Firewall Services Module 3.1/4.0
回避策：cisco-sa-20100804-fwsmにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3f130.shtml
http://www.securityfocus.com/bid/42216
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2818
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2819
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2821
http://secunia.com/advisories/40843
CVE：CVE-2010-2818, CVE-2010-2819, CVE-2010-2820, CVE-2010-2821
危険性：High Risk

Cisco Network Building Mediator

ソフト名：Cisco Network Building Mediator 1.5/2.2/3.0
回避策：cisco-sa-20100526-mediatorにて対応
脆弱性：不適正なデフォルト資格証明, 権限の昇格, デバイスのリロード,セキュリティの強度不足, 機密情報の奪取
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b2c518.shtml
http://www.securityfocus.com/bid/40380
http://www.securityfocus.com/bid/40382
http://www.securityfocus.com/bid/40384
http://www.securityfocus.com/bid/40385
http://www.securityfocus.com/bid/40386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0595
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0597
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0598
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0599
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0600
http://secunia.com/advisories/39904
CVE：CVE-2010-0595, CVE-2010-0597, CVE-2010-0598, CVE-2010-0599, CVE-2010-0600
危険性：High Risk

Cisco Network Building Mediator

ソフト名：Cisco Network Building Mediator 1.5/2.2/3.0
回避策：cisco-sa-20100526-mediatorにて対応
脆弱性：不適正なデフォルト資格証明, 権限の昇格, デバイスのリロード,セキュリティの強度不足, 機密情報の奪取
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b2c518.shtml
http://www.securityfocus.com/bid/40380
http://www.securityfocus.com/bid/40382
http://www.securityfocus.com/bid/40384
http://www.securityfocus.com/bid/40385
http://www.securityfocus.com/bid/40386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0595
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0597
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0598
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0599
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0600
http://secunia.com/advisories/39904
CVE：CVE-2010-0595, CVE-2010-0597, CVE-2010-0598, CVE-2010-0599, CVE-2010-0600
危険性：High Risk