Wednesday, January 28, 2015

Cisco Prime Service Catalog XML External Entity Processing Vulnerability

A vulnerability in the configuration of the XML parser of Cisco Prime Service Catalog could allow an authenticated, remote attacker to access sensitive data stored on the host operating system or cause system resource consumption that could cause a denial of service condition.



Cisco has released free software updates that address this vulnerability.



This advisory is available at the following link:

http://bit.ly/1LhH8nL



from Cisco Security Advisory http://bit.ly/1LhH8nL
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)