Re: [Full-disclosure] [c-nsp] Cisco Security Advisory: Crafted IP Option Vulnerability
- From: "Justin Shore" <justin.shore@xxxxxxxxxx>
- Date: Thu, 25 Jan 2007 22:47:25 -0600
Now that you mention it, I did have a Pix running 7.1.2 mysteriously
reboot twice today. What are the odds that this vulnerability affects
more than just IOS 9-12?
Justin
-----Original Message-----
From: cisco-nsp-bounces@xxxxxxxxxxxxxxx
[mailto:cisco-nsp-bounces@xxxxxxxxxxxxxxx] On Behalf Of Andre Gironda
So it's too late. Don't bother upgrading now; you're already owned.
Unless they are blocking it at the ISP borders in the same way they
blocked out the Cisco IPv4 Crafted DoS vulnerability in 2003. ISP's
probably got the patch (or at least Cisco's ISP's did) a week ago.
Had rolling reboots lately? Don't know why? Lots of "miscellaneous"
ISP maintenace. I wonder...
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Follow-Ups:
- Prev by Date: [Full-disclosure] [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability fixed
- Next by Date: [Full-disclosure] [Fwd: Re: [ GLSA 200701-18 ] xine-ui: Format string vulnerabilities]
- Previous by thread: [Full-disclosure] [OPENADS-SA-2007-002] Max Media Manager v0.1.29 and v0.3.30 vulnerability fixed
- Next by thread: Re: [Full-disclosure] [c-nsp] Cisco Security Advisory: Crafted IP Option Vulnerability
- Index(es):
