Cisco critical vulnerabilities leads to DDoS attacks
The breaches are detected as CVE-2019-1721 and CVE-2019-1694 and impact Cisco’s TelePresence Video Communication Server and ASA 5500-X Series Firewalls. Cisco has implemented special security fixes for two cybersecurity breaches that can allow cybercriminals to launch DDoS attacks.
CVE-2019-1721 is the vulnerability with the wildest likely impact. It is a security breach in the phone-book of Cisco Expressway Series and Cisco TelePresence Video Communication Server. The flaw could allow unauthorized remote access to increase the server's performance up to 100%, which is a reason resulting in a DDoS. The breach is related to inappropriate handling of XML input by affected devices.
CVE-2019-1694 is the second critical breach that exists in the TCP processing engine of Cisco Adaptive Security Appliance (ASA) software and Cisco Firepower Threat Defense (FTD) software. The vulnerability is due to inappropriate handling of TCP traffic. Attackers who are using a TCP protocol that is configured for inspection could exploit this vulnerability by sending a specific sequence of packets at a high rate through an affected device.
Mark
May 8, 2019Check this out to fix breaches: https://tools.cisco.com/security/center/mpublicationListingDetails.x?docType=CiscoSecurityAdvisory