Blog

Multiple Cisco Products OSPF LSA Manipulation Vulnerability

Multiple Cisco products are affected by a vulnerability involving the Open Shortest Path First (OSPF) Routing Protocol Link State Advertisement (LSA) database. This vulnerability could allow an unauthenticated, remote attacker to take full control of the OSPF Autonomous System (AS) domain routing table, allowing the attacker to intercept or black-hole traffic. The attacker could exploit […]

Cisco Adaptive Security Appliance Authenticated Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected device. […]

Government IT: Four Tests to Help You Prioritize Resources

The Trump administration’s budget blueprint (pdf) and the Office of Management and Budget’s (OMB’s) subsequent memorandum on public sector reform (pdf) both ask senior public sector managers to rethink how they structure and run their organizations, not only how they carry out their missions but also the scope of those missions. These calls for reform are not new, […]