Re: Cisco.com compromised

[mike jablonski <mkj () swissmail org>]

SSL is up....  check out the version of OpenSSL.  And last Mod.

HTTP/1.1 200 OK
Date: Wed, 03 Aug 2005 19:33:59 GMT
Server: Apache/1.0 (Unix) mod_ssl/2.8.16 OpenSSL/0.9.7d
Set-Cookie: CP_GUTC=66.147.158.51.27912112309763975; path=/; expires=Sun,
28-Jul-30 19:33:59 GMT; domain=.cisco.com
Last-Modified: Wed, 15 Dec 1999 01:19:19 GMT
ETag: "4dd3a-41-3856ec97"
Accept-Ranges: bytes
Content-Length: 65
Connection: close
Content-Type: text/html

<html>
<head>
</head>
<body>
<h5>SSL is up</h5>
</body>
</html>
 



Quoting Jerome Athias <jerome.athias () caramail com>:

> look on: http://www.cisco.com/cgi-bin/login
>
>
> IMPORTANT NOTICE:
> Cisco has determined that Cisco.com password protection has been compromised.
>      
> As a precautionary measure, Cisco has reset your password. To receive your
> new password, send a blank e-mail, from the account which you entered upon
> registration, to cco-locksmith () cisco com. Account details with a new random
> password will be e-mailed to you.  
> If you do not receive your new password within five minutes, please contact
> the Technical Support Center. 
> This incident does not appear to be due to a weakness in Cisco products or
> technologies.
>
> /JA
> ************************************************************
> http://www.athias.fr - Alertes de sécurité
> ************************************************************
>
> Protek-on: CaraMail met en oeuvre un nouveau Concept de Sécurité Globale -
> www.caramail.com

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
https://lists.immunitysec.com/mailman/listinfo/dailydave