Full Disclosure mailing list archives
Re: Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption)
From: Jedi/Sector One <j () pureftpd org>
Date: Sun, 5 Sep 2004 09:33:55 +0159
On Sun, Sep 05, 2004 at 08:48:46AM +0200, Jan Muenther wrote:
just a simple question, but have you talked to Wind River or whoever does vxWorks these days...?
Yes. There's no difference between regular support requests and security issues. They demand a valid VxWorks license number before having a look at the content of mails. But as I am only using devices that embed VxWorks, I've none and this is a no go. Since Brocade has a fix, maybe VxWorks did it silently at the first place. BTW Brocade has confirmed that any switch running pre-3.2 code is vulnerable, including models 3800, 3200 and 2800. Latest models will all run Linux instead. -- __ /*- Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com> -*\ __ \ '/ <a href="http://www.PureFTPd.Org/";> Secure FTP Server </a> \' / \/ <a href="http://www.Jedi.Claranet.Fr/";> Misc. free software </a> \/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Engenio/LSI Logic controllers denial of service/data corruption Jedi/Sector One (Sep 04)
- Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption) Jedi/Sector One (Sep 04)
- Re: Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption) Jan Muenther (Sep 05)
- Re: Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption) Jedi/Sector One (Sep 05)
- Re: Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption) Jan Muenther (Sep 05)
- Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption) Jedi/Sector One (Sep 04)