Mises à jour de sécurité pour Cisco

Numéro : AV18-073
Date : Le 2 mai 2018

Objet

L'objectif de cet avis est d'attirer l'attention sur des avis de sécurité publié par Cisco.

Évaluation

Cisco a publié des avis de sécurité pour corriger les vulnérabilités dans plusieurs produits.

Produits visés:
- Cisco WebEx Advanced Recording Format Remote Code Execution Vulnerability
- Cisco Prime File Upload Servlet Path Traversal and Remote Code Execution Vulnerability
- Cisco Secure Access Control System Remote Code Execution Vulnerability
- Cisco Wireless LAN Controller 802.11 Management Frame Denial of Service Vulnerability
- Cisco Wireless LAN Controller IP Fragment Reassembly Denial of Service Vulnerability
- Cisco Meeting Server Remote Code Execution Vulnerability
- Cisco Aironet 1810, 1830, and 1850 Series Access Points Point-to-Point Tunneling Protocol Denial of Service Vulnerability
- Cisco Aironet 1800, 2800, and 3800 Series Access Points Secure Shell Privilege Escalation Vulnerability
- Cisco IOS, IOS XE, and IOS XR Software Link Layer Discovery Protocol Buffer Overflow Vulnerabilities
- Cisco 5500 and 8500 Series Wireless LAN Controller Information Disclosure Vulnerability
- Cisco WebEx Advanced Recording Format Player Remote Code Execution Vulnerability
- Cisco WebEx Recording Format Player Information Disclosure Vulnerability
- Cisco Prime Service Catalog User Interface Denial of Service Vulnerability
- Cisco IOS XR Software netconf Denial of Service Vulnerability
- Cisco Firepower System Software Transport Layer Security Extensions Denial of Service Vulnerability
- Cisco Firepower System Software Cross-Origin Domain Protection Vulnerability
- Cisco Firepower System Software Transport Layer Security Denial of Service Vulnerability
- Cisco Aironet Access Points Central Web Authentication FlexConnect Client ACL Bypass Vulnerability
- Cisco Aironet 1800 Series Access Point 802.11 Denial of Service Vulnerability
- Cisco Wireless LAN Controller and Aironet Access Points IOS WebAuth Client Authentication Bypass Vulnerability

Référence CVE:  CVE-2018-0167, CVE-2018-0175, CVE-2018-0226, CVE-2018-0234, CVE-2018-0235, CVE-2018-0245, CVE-2018-0247, CVE-2018-0249, CVE-2018-0250, CVE-2018-0252, CVE-2018-0253, CVE-2018-0258, CVE-2018-0262, CVE-2018-0264, CVE-2018-0278, CVE-2018-0281, CVE-2018-0283, CVE-2018-0285, CVE-2018-0286, CVE-2018-0287, CVE-2018-0288

Mesures Recommandées

Le CCRIC recommande que les administrateurs de système mettent à l'essai et déploient les mises à jour diffusées par le fournisseur aux applications concernées.

Références : (en anglais)

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-war
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-prime-upload
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-acs1
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-wlc-mfdos
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-wlc-ip
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-cms-cx
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-ap-ptp
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-aironet-ssh
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-lldp
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-wlc-id
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-webex-rce
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-webex-id
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-psc
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-iosxr
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-fpwr-txdos
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-fpwr-dos
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-fpwr-codp
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-ap-acl
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-aironet-dos
• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-aironet-auth