Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cisco IOS Shellcode Presentation

From: Ron DuFresne <dufresne () winternet com>
Date: Fri, 29 Jul 2005 16:38:26 -0500 (CDT)
On Fri, 29 Jul 2005, Jason Coombs wrote:


Madison, Marc wrote:

 Am I missing something here, because it seems that two vulnerabilities
are being discussed, one is the IPv6 DOS
http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml.  And
the other is Lynn presentation on shellcode execution via the IOS?


Did you read the advisory? It is not solely a DoS threat.

"Cisco Internetwork Operating System (IOS ) Software is vulnerable to a
Denial of Service (DoS) and potentially an arbitrary code execution
attack from a specifically crafted IPv6 packet."


being that we'll all be retired and all this equipment replaced by the
time IPv6 becomes standard the threat is not as great then as it was first
made out to be then, correct?





Thanks,

Ron DuFresne


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: