Assurance Advisories

The following are public advisories released by Assurance after consultation with affected vendors and (where possible) once there is confirmed remediation or correction of the identified issue.

• 2006 April 19 - Multiple Linux-based Cisco Products - Cisco Wireless Lan Solution Engine (WLSE), Cisco Hosting Solution Engine (HSE), Cisco Ethernet Subscriber Solution Engine (ESSE), Cisco User Registration Tool (URT), CiscoWorks2000 Service Management Solution (SMS), Cisco Vlan Policy Server (VPS), Cisco Management Engine (ME1100 Series), CiscoWorks Service Level Manager (SLM) - There are two vulnerabilities that exist in the CiscoWorks Wireless LAN Solution Engine (WLSE). The first is a cross site scripting (XSS) vulnerability that may allow an attacker to gain administrative privileges on the system. The second is a local privilege escalation vulnerability that can be used by an attacker who already has authenticated access to the command line interface to obtain access to the underlying operating system. The second vulnerability affects several other products.
• 2005 November - Asterisk PBX Comedian Voice Mail - A vulnerability exists in the vmail.cgi CGI which permits retrieval of any .WAV file on the Asterisk system by a valid, authenticated voice mail user. This includes other users' stored voice mail messages.
• 2005 March - Barracuda Networks Spam Firewall - A vulnerability in web-based management CGI smtp_test.cgi leads to remote non-privileged compromise by an un-authenticated attacker; local mis-configuration of sudo leads to local privileged "root" compromise. When combined these two issues provide remote, un-authenticated and privileged access to Barracuda's Linux-based operating system.