Note to readers

This publication does not currently meet the Government of Canada's Web Standards. The information remains valid.

Cisco Product Vulnerabilities

Number: AV17-090
Date: 29 June 2017

Purpose

The purpose of this advisory is to bring attention to Cisco security vulnerabilities.

Assessment

Cisco released advisories to notify on vulnerabilities discovered in the following products.  In these instances a remote attacker could execute code and take control of the system.

-  SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software
-  Cisco Context Service software development kit

CVE References: CVE-2017-6667, CVE-2017-6736, CVE-2017-6737, CVE-2017-6738, CVE-2017-6739, CVE-2017-6740, CVE-2017-6741, CVE-2017-6742, CVE-2017-6743, CVE-2017-6744

Suggested Action

CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly to remediate this vulnerability.

References:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-ccs
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp

Date modified: