• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Cisco Media Gateway Controller Solaris Vulnerability Exposure Vulnerability

Solution:
Cisco has released fixes. It should be noted that these fixes may not secure systems that have already been compromised. Vulnerable hosts should be checked for signs of intrusion (see the guide from CERT linked to in the references section).


Cisco PGW2200 PSTN Gateway

• Cisco CSCOh007.pkg
  This is the first of two patches that correct this issue. This fix eliminates vulnerabilities present in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  


• Cisco CSCOh013.pkg
  This is the second of two patches that correct this issue. This fix disables services enabled by default in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  

Cisco Virtual Switch Controller 3000

• Cisco CSCOh007.pkg
  This is the first of two patches that correct this issue. This fix eliminates vulnerabilities present in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  


• Cisco CSCOh013.pkg
  This is the second of two patches that correct this issue. This fix disables services enabled by default in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  

Cisco Voice Services Provisioning Tool

• Cisco CSCOh007.pkg
  This is the first of two patches that correct this issue. This fix eliminates vulnerabilities present in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  


• Cisco CSCOh013.pkg
  This is the second of two patches that correct this issue. This fix disables services enabled by default in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  

Cisco Billing and Management Server

• Cisco CSCOh007.pkg
  This is the first of two patches that correct this issue. This fix eliminates vulnerabilities present in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  


• Cisco CSCOh013.pkg
  This is the second of two patches that correct this issue. This fix disables services enabled by default in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  

Cisco Signaling Controller 2200

• Cisco CSCOh007.pkg
  This is the first of two patches that correct this issue. This fix eliminates vulnerabilities present in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.
  


• Cisco CSCOh013.pkg
  This is the second of two patches that correct this issue. This fix disables services enabled by default in Solaris 2.6.This patch should be obtained at the Software Center at Cisco's website. See the Cisco advisory (in the reference section) for more information.