Number: AV16-181
Date: 7 November 2016
Purpose
The purpose of this advisory is to bring attention to multiple Cisco security advisories.
Assessment
Cisco released multiple security updates to address vulnerabilities (critical to medium) in Cisco ASR 900 Series Aggregation Services Routers, Cisco Prime Home, Cisco Meeting Server, Cisco Meeting App, Cisco ASR 5500 Series Routers, Cisco Email Security Appliance and Cisco TelePresence Endpoints.
CVE References:
Critical Impact CVEs: CVE-2016-6441, CVE-2016-6452
High Impact CVEs: CVE-2016-6447, CVE-2016-6448
Medium Impact CVEs: CVE-2016-6455, CVE-2016-6457, CVE-2016-6458, CVE-2016-6459
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References:
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-tl1
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-cph
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-cms1
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-cms
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-asr
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-esa
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-n9kapic
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-tp