[c-nsp] Cisco Security Advisory: Cisco IOS Software TFTP Server Denial of Service Vulnerability
Cisco Systems Product Security Incident Response Team
psirt at cisco.com
Wed Jul 22 12:01:57 EDT 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Cisco Security Advisory: Cisco IOS Software TFTP Server Denial of Service Vulnerability
Advisory ID: cisco-sa-2015722-tftp
Revision 1.0
For Public Release 2015 July 22 16:00 UTC (GMT)
------------------------------------------------------------------------------------------
Summary
=======
A vulnerability in the TFTP server feature of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
The TFTP server feature is not enabled by default.
Cisco has released software updates that address this vulnerability.
Workarounds that mitigate this vulnerability are available.
This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-tftp
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org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=v86R
-----END PGP SIGNATURE-----
More information about the cisco-nsp
mailing list