Cisco Systems releases a barrage of patches aimed at fixing bugs in its ubiquitous IOS operating system. The patches plug holes in a wide range of products and address denial-of-service, file overwrite and input validation attacks. Twenty-nine of the Cisco bugs are rated high severity, with 13 rated medium in severity. The most noteworthy are a number of vulnerabilities opening the door for remote, unauthenticated attackers to execute arbitrary code on targeted systems. A web UI bypass vulnerability, according to Cisco, could allow an authenticated, remote attacker to utilize parts of the web UI for which they are not authorized
Source: https://threatpost.com/cisco-patches-bugs/159537/