Full Disclosure mailing list archives
Re: taking their revenge @ cisco
From: Michael Holstein <michael.holstein () csuohio edu>
Date: Thu, 04 Aug 2005 15:01:06 -0400
It have nothing to do with a IOS at all. All the other SQL injection that happen in the world have nothing to do with Cisco IOS flaws. This is a pure case of the search function being open to SQL injection. Therefore it is a design/code problem in one of the three web-app tiersof the website.
Yeah .. but I guess their "Self Defending Network" well, um ... DIDN'T. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- taking their revenge @ cisco Michael Holstein (Aug 03)
- Re: taking their revenge @ cisco Frank Knobbe (Aug 04)
- Re: taking their revenge @ cisco Chris Adams (Aug 04)
- <Possible follow-ups>
- RE: taking their revenge @ cisco Todd Towles (Aug 04)
- Re: taking their revenge @ cisco Michael Holstein (Aug 04)
- Cisco Self Defending Network Travis Good (Aug 04)
- Re: taking their revenge @ cisco Michael Holstein (Aug 04)
- RE: taking their revenge @ cisco Todd Towles (Aug 04)
- Re: taking their revenge @ cisco Frank Knobbe (Aug 04)