Is this a hoax?

[Blanchard_Michael () emc com]

Sure seems like a hoax or other baddie to me....  The "patch" comes from sofaware.com.....

 
http://www.darkreading.com/document.asp?doc_id=127731&WT.svl=news1_1
CSRF Bug Runs Rampant 
 
JUNE 26, 2007 | It was only a matter of time before the cross-site request forgery (CSRF) floodgates would open: A 
security appliance firm has found the wily bug in products from eight security vendors, including Check Point 
Software's Safe@Office Unified Threat Management device, versions 7.0.39X and prior. (See Eight Vulnerabilities You May 
Have Missed), CSRF Vulnerability: A 'Sleeping Giant' and Killer Combo: XSS + CSRF.) 

Check Point, which today issued a patch for the bug within its 7.0.45 release of the product, is the only vendor so far 
to officially respond to the CSRF discovery found by Calyptix Security, a tiny Charlotte, N.C.-based supplier of 
all-in-one security 
 
....


Michael P. Blanchard 
Antivirus / Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
Office of Information Security & Risk Management 
EMC ² Corporation 
4400 Computer Dr. 
Westboro, MA 01580 


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.