Cisco 發布了21個安全公告,以應對發現於Cisco IOS及IOS XE軟件中的多個漏洞。遠端攻擊者可以向受影響系統發出特製的封包(packet)、框架(frame)或信息從而攻擊這些漏洞。通過認證的本機攻擊者也可以繞過認證或向受影響系統植入指令,或上載惡意的軟件映像(software image)或檔案從而攻擊這些漏洞。
成功利用這些漏洞可以導致權限提升、執行任意程式碼、繞過保安措施、服務受阻斷或重啓受影響的系統,視乎攻擊者利用哪個漏洞而定。
適用於受影響系統的修補程式已可獲取。受影響系統的用戶應遵從產品供應商的建議,立即採取行動以降低風險。有關修補程式的詳細資料,請參閱供應商網站的相應安全公告中有關 “Fixed Software” 的部分。
用戶可聯絡其產品支援供應商,以取得修補程式及有關支援。
https://tools.cisco.com/security/center/viewErp.x?alertId=ERP-69981
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-catalyst6800
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-cdp-dos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-cdp-memleak
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-cmp
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-digsig
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-errdisable
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-iosxe-cmdinj
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ipsec
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ipv6hbh
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ir800-memwrite
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-macsec
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ospfv3-dos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-pnp-memleak
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-privesc
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ptp
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-shell-access
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sip-alg
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-sm1t3e3
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-tacplus
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-vtp
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-webdos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-webuidos
https://www.hkcert.org/my_url/zh/alert/18092701
https://www.us-cert.gov/ncas/current-activity/2018/09/26/Cisco-Releases-Security-Updates-Multiple-Products
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0466
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0467
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0469
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0470
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0471
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0472
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0473
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0475
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0476
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0477
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0485
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15368
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15369
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15370
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15371
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15372
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15373
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15374
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15375
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15376
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15377