Cisco Security Advisory: Cisco VPN Client Multiple Vulnerabilities - Second Set

[raceves () cisco com (Richard Aceves)]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Dave,

The Advisory was signed using 0xF236759C which is valid from 12-June-2002 
through 01-Jul-2005.  I queried wwwkeys.uk.pgp.net, and the key was signed 
by five members of my organization, another Cisco employee, a PSIRT member 
who additionally participates in EuroCERT, a member of CERT/CC, and a 
member of FIRST.

It's not clear to me why you see something different -- please let us know 
if you have additional information that could help us understand the issue.


Regards,

richard.

At 14:28 09/06/02 +0100, Dave Wilson wrote:
> On Thu, Sep 05, 2002 at 08:00:00AM -0700, Cisco Systems Product Security 
> Incident Response Team wrote:
> > -----BEGIN PGP SIGNED MESSAGE-----
> <SNIP>
> > -----BEGIN PGP SIGNATURE-----
> <SNIP>
> > -----END PGP SIGNATURE-----
> > -----BEGIN PGP PUBLIC KEY BLOCK-----
> <MASSIVE SNIP - MEGA SIZED KEY ALERT>
> > -----END PGP PUBLIC KEY BLOCK-----
>
>
> So, I'm meant to verify this e-mail was sent by Cisco, with the attached
> key? Looking at wwwkeys.uk.pgp.net, I see no-one has signed your key
> either. Please RTFM. Have fun,
>
> Dave.

- --
Richard Aceves
Manager, Product Security Incident Response Team (PSIRT)
Cisco Systems, Inc.
+1 (408) 526-7035
http://www.cisco.com/go/psirt

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.1

iQA/AwUBPXlFCvg/zCLC/3gNEQKu4QCgmK+nsxmxh1I/k+CgwlAL52BmLtEAn0WY
q+eHlAHmEJw0o1P2YThmpDq2
=L4Ij
-----END PGP SIGNATURE-----