nanog mailing list archives
Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw
From: Saku Ytti <saku+nanog () ytti fi>
Date: Fri, 29 Jul 2005 23:10:30 +0300
http://www.eweek.com/article2/0,1759,1841669,00.aspCisco still seems to be spinning it, though. The important part of Lynn's presentation wasn't the IPv6 exploit, but how future exploits can be used to execute arbitrary code on Cisco equipment. By making a big deal about the "IPv6 exploit" they are in effect trying to reassure people that run IPv4-only networks that this is not a big problem, and that it doesn't effect them.
Important part of Lynn's presentation is that there will be buffer overflows and they can be exploited, this is vendor independent. And the threat was there 10 years ago and the threat will be there 10 years from now. Some people were also surprised by the 'late' ICMP 'vulnerabilities' and some even found time to bash $vendor about it. I guess someone has to yell wolf every now and then to interest people in maintaining their systems. -- ++ytti
Current thread:
- eWeek: Cisco Comes Clean on Extent of IOS Flaw Fergie (Paul Ferguson) (Jul 29)
- Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw Janet Sullivan (Jul 29)
- Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw Saku Ytti (Jul 29)
- Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw Dan Hollis (Jul 29)
- <Possible follow-ups>
- Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw Fergie (Paul Ferguson) (Jul 29)
- Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw Dan Hollis (Jul 29)
- Re: eWeek: Cisco Comes Clean on Extent of IOS Flaw Janet Sullivan (Jul 29)