nanog mailing list archives
Re: Cisco cover up
From: "Stephen Sprunk" <stephen () sprunk org>
Date: Thu, 28 Jul 2005 13:43:31 -0500
Thus spake "Mikael Abrahamsson" <swmike () swm pp se>
On Thu, 28 Jul 2005, Mark Owen wrote:Cisco had the exploit fixed in April and no longer offers the exploitable OS for download on their site.And the list of vulnerable IOS versions is where....?I don't care exactly what the exploit is but I want to know the risks involved and what versions are vulnerable. Any workarounds availablewould be nice as well, the fewer routers potentially needing immediate upgrade to fixed IOS the better.
The short answer is, if an image is still on CCO, it's not vulnerable. That applies to both this problem and any other security problems Cisco has patched but not published notices for yet.
S Stephen Sprunk "Those people who think they know everything CCIE #3723 are a great annoyance to those of us who do."K5SSS --Isaac Asimov
Current thread:
- Cisco cover up J. Oquendo (Jul 27)
- Re: Cisco cover up James Baldwin (Jul 27)
- Re: Cisco cover up Stephen J. Wilcox (Jul 28)
- Re: Cisco cover up Randy Bush (Jul 28)
- Re: Cisco cover up Stephen J. Wilcox (Jul 28)
- Re: Cisco cover up Mark Owen (Jul 28)
- Re: Cisco cover up Mikael Abrahamsson (Jul 28)
- Re: Cisco cover up james edwards (Jul 28)
- RE: Cisco cover up Robert Crowe (Jul 28)
- RE: Cisco cover up James Edwards (Jul 28)
- Re: Cisco cover up Mikael Abrahamsson (Jul 28)
- Re: Cisco cover up Stephen Sprunk (Jul 28)
- Re: Cisco cover up James Baldwin (Jul 27)
- Re: Cisco cover up Chris Adams (Jul 28)
- <Possible follow-ups>
- RE: Cisco cover up Olsen, Jason (Jul 27)
- Re: Cisco cover up Joseph S D Yao (Jul 28)
- Re: Cisco cover up James Baldwin (Jul 28)
- Re: Cisco cover up Joseph S D Yao (Jul 28)
- Re: Cisco cover up Florian Weimer (Jul 28)
- Re: Cisco cover up Joseph S D Yao (Jul 28)
- Re: Cisco cover up Jared Mauch (Jul 28)