Re: Cisco IOS Vulnerability

[Jared Mauch <jared () puck Nether net>]

On Thu, Jul 17, 2003 at 07:48:24AM +0200, Mikael Abrahamsson wrote:
> On Wed, 16 Jul 2003, Darrell Kristof wrote:
>
> > Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 Packet
> > http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml
>
> IS anyone seeing this exploited in the wild? It'd be good to know if we 
> need to do panic upgrade or can schedule it for our next maintenance 
> window (which is during the weekend).

        I've been keeping my ear close to the ground.  A number
of people have been attempting to find the packet to better place
ACLs in the internet community, but i've also heard of people seeing
more series of "unusual" packets on their network in the past
few days as well.

        Nobody has found it yet that i'm aware of and Cisco found
this in internal testing so I expect you will be safe for a
period of time sufficent to do weekend upgrades.

        - jared

-- 
Jared Mauch  | pgp key available via finger from jared () puck nether net
clue++;      | http://puck.nether.net/~jared/  My statements are only mine.