Digital Times Nigeria
  • Home
  • Telecoms
    • Broadband
  • Business
    • Banking
    • Finance
  • Editorial
    • Opinion
    • Big Story
  • TechExtra
    • Fintech
    • Innovation
  • Interview
  • Media
    • Social
    • Broadcasting
Facebook X (Twitter) Instagram
Trending
  • It’s A New Era Of Foldable, AI-Powered Innovation As Samsung Unveils Galaxy Z Fold7 And Z Flip7 Series
  • Senate Declares National Emergency On Ponzi Schemes, Launches Multi-Agency Probe Into CBEX Collapse
  • Nigeria Steps Up Cyber Defence As Threat Landscape Expands
  • Anambra Deepens Digital Reforms, Eyes Top Ranking In Ease Of Doing Business
  • NITDA Leads Push For 95% Digital Literacy By 2030 As UBEC Commits To Strategic Partnership
  • From Lagos To The World: NerdzFactory Powers Nigeria’s Leap Into AI Education
  • JAMB, Stakeholders Approve New Admission Benchmarks, Reaffirm Minimum Age Requirement
  • PalmPay Partners With Leading Insurers To Bring Affordable Coverage To Millions Of Nigerians
Facebook X (Twitter) Instagram
Digital Times NigeriaDigital Times Nigeria
  • Home
  • Telecoms
    • Broadband
  • Business
    • Banking
    • Finance
  • Editorial
    • Opinion
    • Big Story
  • TechExtra
    • Fintech
    • Innovation
  • Interview
  • Media
    • Social
    • Broadcasting
Digital Times Nigeria
Home » NCC-CSIRT Issues Advisory To Cisco Products Users On Multiple Vulnerabilities
Telecoms

NCC-CSIRT Issues Advisory To Cisco Products Users On Multiple Vulnerabilities

DigitalTimesNGBy DigitalTimesNG5 November 2022No Comments2 Mins Read
Facebook Twitter Pinterest Telegram LinkedIn Tumblr WhatsApp Email
NCC REAL LOGO
Share
Facebook Twitter LinkedIn Pinterest Telegram Email WhatsApp

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has issued an advisory for users to frequently review alerts for Cisco products to assess their exposure and find a comprehensive update solution.

The advisory, which also recommended using the appropriate software updates that are accessible from the vendor website, followed the identification of multiple vulnerabilities in Cisco Products, especially the Cisco AnyConnect Secure Mobility Client for Windows, which enables employees to access company servers from anywhere without compromising security.

The two vulnerabilities made it possible for a remote attacker exploit to trigger remote code execution and data manipulation on the targeted system.

“The weaknesses in the product include uncontrolled search path and Dynamic Link Library (DLL) hijacking vulnerabilities. The uncontrolled search path vulnerability results from incorrect handling of directory paths. A directory path is a string of characters used to uniquely identify a location in a folder structure.

“This flaw could be exploited by an attacker by generating a malicious file and copying it to a system directory (folder). An exploit could enable the attacker to copy malicious files with system-level privileges to any location. The attacker needs legitimate Windows system credentials to exploit this vulnerability.

“Moreover, to exploit the DLL hijacking vulnerability, the attacker would also need to have valid credentials on the Windows system. The vulnerability was caused by the device’s inadequate run-time resource validation. By sending the AnyConnect process a specially designed IPC message, an attacker might take advantage of this vulnerability,” the advisory noted.

The advisory rated the vulnerability high in impact and probability.

READ ALSO  NCC-CSIRT Warns Of Phishing Attack Exploit

The CSIRT is the telecom sector’s cyber security incidence centre set up by the NCC to focus on incidents in the telecom sector and as they may affect telecom consumers and citizens at large.

The CSIRT also works collaboratively with ngCERT, established by the Federal Government to reduce the volume of future computer risk incidents by preparing, protecting, and securing Nigerian cyberspace to forestall attacks, and problems or related events.

#Advisory #Cisco Products #Multiple Vulnerabilities #NCC-CSIRT #Users
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleJust In: FG Orders Withdrawal Of Charges Against Zinox Boss, Wife, Others
Next Article FirstBank Sponsors 5th Chukker African Patrons Cup Polo Tournament
DigitalTimesNG
  • X (Twitter)

Related Posts

Telecom Security In Focus As NITRA, ALTON Host National Forum On CNII And Sustainability

2 July 2025

ALTON Blames NIMC Migration For Nationwide Disruption Of SIM Services

2 July 2025

Smile Nigeria: Connecting Nigerians To What Truly Matters

25 June 2025

ALTON Clarifies New USSD Billing Policy, Confirms Direct Charges To Subscribers From June 18

18 June 2025

The End User Billing (EUB) Model And Its Impact On Nigeria’s USSD Banking Landscape

12 June 2025

Driving Digital Inclusion: NCC, Stakeholders Unite To Tackle Nigeria’s Rural Connectivity Gap

12 June 2025

Comments are closed.

Categories
About
About

Digital Times Nigeria (www.digitaltimesng.com) is an online technology publication of Digital Times Media Services.

Facebook X (Twitter) Instagram
Latest Posts

It’s A New Era Of Foldable, AI-Powered Innovation As Samsung Unveils Galaxy Z Fold7 And Z Flip7 Series

10 July 2025

Senate Declares National Emergency On Ponzi Schemes, Launches Multi-Agency Probe Into CBEX Collapse

10 July 2025

Nigeria Steps Up Cyber Defence As Threat Landscape Expands

10 July 2025
Popular Posts

Building Explainable AI (XAI) Dashboards For Non-Technical Stakeholders

2 May 2022

Building Ethical AI Starts With People: How Gabriel Ayodele Is Engineering Trust Through Mentorship

8 January 2024

Gabriel Tosin Ayodele: Leading AI-Powered Innovation In Web3

8 November 2022
© 2025 Digital Times NG. Designed by Max Excellence LLC.
  • Advert Rate
  • Terms of Use
  • Advertisement
  • Private Policy
  • Contact Us

Type above and press Enter to search. Press Esc to cancel.