Cisco IOS

ソフト名：Cisco IOS 12.x/15.1

回避策：アップデートにて対応

脆弱性：システムアクセス, ローカルコード実行, 不明なエラー, 不正パケット

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-smart-install.shtml

http://secunia.com/advisories/46165/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3271

CVE：CVE-2011-3271

危険性：Medium Risk

Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 3.1.xSG

回避策：アップデートにて対応, 3.2.0SG以降へのアップデートにて対応

脆弱性：DoS攻撃, NAT変換エラー, デバイスのリロード, メモリリーク, メモリの浪費, 不正パケット

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-nat.shtml

http://secunia.com/advisories/46179/

http://secunia.com/advisories/46225/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0946

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3276

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3277

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3278

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3279

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3280

CVE：CVE-2011-0946, CVE-2011-3276, CVE-2011-3277, CVE-2011-3278, CVE-2011-3279, CVE-2011-3280

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 15.0/15.1

回避策：アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, メモリの浪費, ハング, クラッシュ

ソース：

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-zbfw.shtml

http://secunia.com/advisories/46198/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3273

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3281

CVE：CVE-2011-3273, CVE-2011-3281

危険性：Medium Risk

Cisco Unified Communications Manager, Cisco IOS, Cisco IOS XE

ソフト名：Cisco Unified Communications Manager 6.x/7.x/8.x, Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 2.5.x/2.6.x/3.1.x/3.2.x

回避策：7.1(5b)su4/8.5(1)su2/8.6(1)へのアップデートにて対応, 3.1.3Sへのアップデート, アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, 不正音声メッセージ

ソース：

http://www.cisco.com/en/US/products/sw/voicesw/ps556/index.html

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-cucm.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-sip.shtml

http://secunia.com/advisories/46197/

http://secunia.com/advisories/46226/

http://secunia.com/advisories/46230/

http://secunia.com/advisories/46234/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0939

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2072

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3275

CVE：CVE-2011-0939, CVE-2011-2072, CVE-2011-3275

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.x/15.0/15.1

回避策：アップデートにて対応

脆弱性：DoS攻撃, 未特定のエラー, 不正パケット, デバイスのリロード

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipv6.shtml

http://secunia.com/advisories/46199/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0944

CVE：CVE-2011-0944

危険性：Medium Risk

Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 2.1.x〜2.6.x/3.1.x/3.2.x

回避策：3.3.2Sへのアップデートにて対応

脆弱性：DoS攻撃, 不正パケット, クラッシュ

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipv6mpls.shtml

http://secunia.com/advisories/46145/

http://secunia.com/advisories/46207/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3274

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3282

CVE：CVE-2011-3274, CVE-2011-3282

危険性：Medium Risk

Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 15.1, Cisco IOS XE 2.1.x/2.2.x/2.3.x/2.4.x/2.5.x/2.6.x/3.1.x/3.2.x/3.3.x

回避策：アップデートにて対応

脆弱性：DoS攻撃, 不正パケット

ソース：

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-ipsla.shtml

http://secunia.com/advisories/46206/

http://secunia.com/advisories/46231/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3272

CVE：CVE-2011-3272

危険性：Medium Risk

Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 3.1.x/3.2.x

回避策：アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, メモリの浪費

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-dlsw.shtml

http://secunia.com/advisories/46189/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0945

CVE：CVE-2011-0945

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.2/12.3/12.4/15.0/15.1

回避策：CSCtf74999にて対応

脆弱性：DoS攻撃, 原因不明なエラー, 不正パケットの送信, クラッシュ

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtf74999

http://www.cisco.com/en/US/docs/cable/cmts/release/notes/12_2sc/uBR7200/122_33_SCF/caveats.html

http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SY/release/notes/ol_20679.html

http://secunia.com/advisories/45722/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1625

CVE：CVE-2011-1625

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.2(58)SE

回避策：12.2(58)SE1へのアップデート, CSCto62631にて対応

脆弱性：DoS攻撃, 不特定のエラー, デバイスのリロード

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCto62631

http://www.cisco.com/en/US/docs/switches/lan/cisco_ie3000/software/release/12.2_58_se/release/notes/OL24335.html

http://secunia.com/advisories/45761/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1624

CVE：CVE-2011-1624

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 15.1(1)S1/(2)T2未満

回避策：アップデートにて対応

脆弱性：セキュリティ制限の回避

ソース：http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/docs/ios/15_1s/release/notes/15_1s_caveats_15_1_1s.html

http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-2TCAVS.html

http://secunia.com/advisories/44363/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0935

CVE：CVE-2011-0935

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 15.0
回避策：アップデートにて対応
脆弱性：セキュリティ制限の回避, DoS攻撃, デバイスのリロード, デバイスのクラッシュ, メモリの浪費, メモリリーク, メモリの断片化
ソース：http://www.cisco.com/en/US/products/ps10591/index.html
http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf
http://secunia.com/advisories/42917/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5038
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5040
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4685
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4686
CVE：CVE-2009-5038, CVE-2009-5040, CVE-2010-4683, CVE-2010-4685, CVE-2010-4686
危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 12.4T
回避策：cisco-sa-20100922-sslvpnにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a312.shtml
http://www.securityfocus.com/bid/43390
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2836
http://secunia.com/advisories/41552
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2836
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.1～12.4ye
回避策：cisco-sa-20100922-natにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a311.shtml
http://www.securityfocus.com/bid/43393
http://www.securityfocus.com/bid/43400
http://www.securityfocus.com/bid/43401
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2831
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2832
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2833
http://secunia.com/advisories/41539
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2831, CVE-2010-2832, CVE-2010-2833
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.3T～12.4ye
回避策：cisco-sa-20100922-igmpにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a310.shtml
http://www.securityfocus.com/bid/43396
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2830
http://secunia.com/advisories/41551
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2830
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.2sy～12.4yb
回避策：cisco-sa-20100922-sipにて対応
脆弱性：DoS攻撃, デバイスのリロード
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a30f.shtml
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2834
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2835
http://secunia.com/advisories/41549
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2834, CVE-2010-2835
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 12.1T～12.4T
回避策：cisco-sa-20100922-h323にて対応
脆弱性：DoS攻撃, デバイスの再起動
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a300.shtml
http://www.securityfocus.com/bid/43392
http://www.securityfocus.com/bid/43395
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2828
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2829
http://secunia.com/advisories/41513
http://www.vupen.com/english/advisories/2010/2478
CVE：CVE-2010-2828, CVE-2010-2829
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS 15.1(2)T
回避策：cisco-sa-20100812-tcpにて対応
脆弱性：DoS攻撃, システムリソースの浪費, TCP接続の阻止
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4095e.shtml
http://www.securityfocus.com/bid/42426
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2827
http://secunia.com/advisories/40958
http://www.vupen.com/english/advisories/2010/2084
CVE：CVE-2010-2827
危険性：Low Risk

Cisco IOS

ソフト名：Cisco IOS
回避策：あり
脆弱性：DoS攻撃, デバイスの再起動, リモートコード実行
ソース：http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f34.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f33.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f32.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20ee4.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20ee2.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20ee6.shtml
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20ee5.shtml
http://www.securityfocus.com/bid/38929
http://www.securityfocus.com/bid/38930
http://www.securityfocus.com/bid/38931
http://www.securityfocus.com/bid/38932
http://www.securityfocus.com/bid/38933
http://www.securityfocus.com/bid/38934
http://www.securityfocus.com/bid/38935
http://www.securityfocus.com/bid/38936
http://www.securityfocus.com/bid/38937
http://www.securityfocus.com/bid/38938
http://www.securityfocus.com/bid/38940
http://secunia.com/advisories/39057
http://secunia.com/advisories/39062
http://secunia.com/advisories/39065
http://secunia.com/advisories/39067
http://secunia.com/advisories/39068
http://secunia.com/advisories/39069
http://secunia.com/advisories/39078
CVE：CVE-2010-0576, CVE-2010-0577, CVE-2010-0578, CVE-2010-0579, CVE-2010-0580, CVE-2010-0581, CVE-2010-0582, CVE-2010-0583, CVE-2010-0584, CVE-2010-0585, CVE-2010-0586
危険性：High Risk