Cisco and F-Secure have trouble with their own products

Cisco has just released a patch for vulnerabilities affecting routers and call management software. Meanwhile, Finnish security firm F-Secure is forced to issue a warning about security risks in the antivirus program.

The router error affects all devices that use this company's iOS operating system or SGBP - a protocol that supports network access management via Cisco products. Johannes Ullrich, research director at the SANS US security center, said the vulnerability may not have a big impact on many users since SGBP is not really popular.

Two other issues related to Call Manager software are specialized in managing VoIP calls. Errors can be exploited by criminals to perform denial-of-service (DDoS) attacks or hijacking on Call Manager running systems.

" You need to upgrade with a patch but be very cautious. If Call Manager has a problem, your company will not be able to use Internet telephony service for a few days, " Ullrich warned.

F-Secure, meanwhile, acknowledged that the bug in its AV antivirus software threatens to allow hackers to run any code on a compromised system, through ZIP files and RARs containing dangerous programs. .

These files will slip through all AV products and cause buffer overflow on Windows and Linux systems. F-Secure spokesman confirmed that no attacks have occurred so far.

F-Secure does not automatically update patches in Linux like Windows, so users of this operating system must regularly monitor to download fixes on the company's website.