Skip to main content

An article from

Dive Brief

Cisco, Fortinet release patches for NSA exploits

Published Aug. 19, 2016

By

Justine Brown Contributing Editor

Dollar Photo Club

Dive Brief:

Cisco and Fortinet announced they have made patches available for exploits made public after an alleged hack of NSA malware.
The release of patches appears to be further confirmation that at least some of the exploits are legitimate.
Cisco’s PIX and ASA firewalls and versions of Fortinet’s Fortigate firewalls are affected.

Dive Insight:

On Saturday a hacking group, dubbed the Shadow Brokers, claimed to have stolen hacking tools that belong to the National Security Agency, CSO Online reports. The group was auctioning the tools on the Internet over the weekend. After examining the tools more closely, researchers say they suspect Russia is behind the theft, though they are still not sure how or when the theft occurred.

Cisco says the threat level of one of the vulnerabilities — Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability — is high.

"The vulnerability is due to a buffer overflow in the affected code area," according to Cisco’s advisory. "An attacker could exploit this vulnerability by sending crafted SNMP packets to the affected system."

Fortinet also issued a security advisory for an exploit it rates as high because it enables remote administrative access.

Cisco, Fortinet issue patches against NSA malware Network World

Filed Under: Security

CIO Dive news delivered to your inbox

Get the free daily newsletter read by industry experts

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.

Permission granted by Kyndryl

How Kyndryl’s ERP modernization led to an expanded SAP practice

The infrastructure services company is creating a migration playbook to guide others into the cloud, Kyndryl SVP and Global Practice Leader Michael Bradshaw said.

By Matt Ashare • July 29, 2024
onurdongel via Getty Images

How CIOs set the pace of generative AI adoption

Moving too slowly can give competitors the advantage, but rapid deployment brings its own set of challenges.

By Lindsey Wilkinson • July 18, 2024

CIO Dive news delivered to your inbox

Get the free daily newsletter read by industry experts

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.

Editors' picks

Permission granted by Kyndryl

How Kyndryl’s ERP modernization led to an expanded SAP practice

The infrastructure services company is creating a migration playbook to guide others into the cloud, Kyndryl SVP and Global Practice Leader Michael Bradshaw said.

By Matt Ashare • July 29, 2024
onurdongel via Getty Images

How CIOs set the pace of generative AI adoption

Moving too slowly can give competitors the advantage, but rapid deployment brings its own set of challenges.

By Lindsey Wilkinson • July 18, 2024

Latest in Security

Microsoft unveils resiliency, security enhancements following July global IT outage

By David Jones
Easterly to step down from CISA director role on Inauguration Day

By David Jones
Google Cloud to mandate MFA for all users in 2025

By Matt Kapko
Tech executives reassess IT resilience in CrowdStrike outage aftermath

By Matt Ashare

Home
- IT Strategy
- Cloud
- Security
- Big Data
- AI
- Software
- Leadership
Deep Dive
Opinion
Library
Events
Press Releases

Get CIO Dive in your inbox

The free newsletter covering the top industry headlines

Select user consent: By signing up to receive our newsletter, you agree to our Terms of Use and Privacy Policy. You can unsubscribe at anytime.