CiscoWorks Common Services contains a vulnerability that could allow a remote attacker to execute arbitrary code. The risk is HIGH. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the user client machine.
Hi there,
I am trying to find info about the commonly used ports and how it can be vulnerable and to identify them?
For example, I would like to identify how to man-in-the-middle using these ports 21(FTP),22(SSH),23(TELNET), (1 Reply)
CC_crypto(3cc) LOCAL CC_crypto(3cc)NAME
Common Crypto -- libSystem digest library
DESCRIPTION
The libSystem Common Crypto library implements a wide range of cryptographic algorithms used in various Internet standards. The services pro-
vided by this library are used by the CDSA implementations of SSL, TLS and S/MIME.
OVERVIEW
libSystem contains the Common Crypto collection of algorithms. Digest and encryption algorithms contained in this library are optimized for
speed. The algorithms have been collected from various sources and chosen for their performance characteristics. Since libSystem is linked
into all executables it is preferable for applications to use these functions rather than implementing their own versions.
NOTES
To use the digest functions with existing code which uses the corresponding openssl functions, #define the symbol COMMON_DIGEST_FOR_OPENSSL
in your client code (BEFORE including <CommonCrypto/CommonDigest.h> ).
You can *NOT* mix and match functions operating on a given data type from the two implementations; i.e., if you do a CC_MD5_Init() on a
CC_MD5_CTX object, do not assume that you can do an openssl-style MD5_Update() on that same context.
The interfaces to the encryption and HMAC algorithms have a calling interface that is different from that provided by OpenSSL.
HISTORY
The Common Crypto collection of functions started to become available in OS X 10.4 and later.
SEE ALSO CC_MD5(3cc), CC_SHA(3cc), CCHmac(3cc), CCCryptor(3cc)BSD April 5, 2007 BSD