nanog mailing list archives

RE: Cisco IOS Vulnerability

From: "Darrell Kristof" <darrell.kristof () wholefoods com>
Date: Wed, 16 Jul 2003 22:11:49 -0500


Cisco has posted information regarding this issue and work arounds.
12.3 based code does not exhibit this problem.  

Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 Packet
http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml

- Darrell



-----Original Message-----
From: owner-nanog () merit edu [mailto:owner-nanog () merit edu] On Behalf Of
John Timmons
Sent: Wednesday, July 16, 2003 9:20 PM
To: nanog () merit edu
Subject: Cisco IOS Vulnerability




i have no details regarding the ios vulnerability other than what has
already been stated on-list, but the IOS matrix obtained this evening
and listed at http://www.0ptical.net/cisco.html  shows what versions are
affected, and what to upgrade to resolve the mystery issue. not sure why
psirt is keeping this under wraps, since most NSPs are publicly
scheduling "emergency upgrades" to fix "network problems" that arent
being detailed to customers, and those same customers can and will be
affected by the same problem.

thx,
JT

_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!

Current thread:

Cisco IOS Vulnerability John Timmons (Jul 16)
- RE: Cisco IOS Vulnerability Darrell Kristof (Jul 16)
  - Re: Cisco IOS Vulnerability Jared Mauch (Jul 16)
    - Re: Cisco IOS Vulnerability joshua sahala (Jul 16)
    - Re: Cisco IOS Vulnerability Jason Lixfeld (Jul 16)
    - Re: Cisco IOS Vulnerability Jared Mauch (Jul 16)
    - Re: Cisco IOS Vulnerability Christopher L. Morrow (Jul 16)
    - Re: Cisco IOS Vulnerability Jason Lixfeld (Jul 16)
    - RE: Cisco IOS Vulnerability Todd Mitchell - lists (Jul 16)
    - Re: Cisco IOS Vulnerability Ryan Tucker (Jul 16)
    - Re: Cisco IOS Vulnerability (going OT) Petri Helenius (Jul 16)
    - Flapping (was Re: Cisco IOS Vulnerability) Sean Donelan (Jul 16)

(Thread continues...)