Cisco Products Multiple Vulnerabilities

Impact

• Cross-Site Scripting
• Denial of Service
• Elevation of Privilege
• Remote Code Execution
• Security Restriction Bypass
• Information Disclosure

System / Technologies affected

• Cisco Video Surveillance 5000 Series HD IP Dome Camera
• Cisco Video Surveillance Operations Manager
• Cisco NX-OS
• Cisco Secure Access Control Server

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

• The vendor's advisory is available at:
  http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0673
  http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0674
  http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0676
  http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0677
  http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0678

Vulnerability Identifier

• CVE-2014-0673
• CVE-2014-0674
• CVE-2014-0676
• CVE-2014-0677
• CVE-2014-0678

Source

• SecurityTracker
• Cisco

Related Link

• http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0678
• http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0677
• http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0676
• http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0674
• http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0673
• http://securitytracker.com/id/1029688
• http://securitytracker.com/id/1029691
• http://securitytracker.com/id/1029690
• http://securitytracker.com/id/1029692
• http://securitytracker.com/id/1029689