Vulnerability Development mailing list archives
Re: Cisco 678 exploit
From: Damir Rajnovic <gaus () CISCO COM>
Date: Thu, 12 Oct 2000 19:57:33 +0100
Hello Joe, At 09:56 12/10/2000 -0700, Joe wrote:
And next time you want to complain about "vendor notification", go take a look at the Cisco 675 vulnerability I sent you in JANUARY that you guys still haven't fixed. Subject was 'Cisco 675 CISCO_WEB DoS Attack', sent to security-alert () cisco com on January 10th, 2000.
I do not have anything to say in our defence. Guilty as charged. I just checked my archive and that is true. You sent that mail and we failed. For your information, one other customer reported the same thing latter on and I picked up that case. I also went a bit further and looked into the CBOS in more details and that took some time too. For what is worth I do apologize for that. We are usually better in response than that. Cheers, (humble) Gaus ============== Damir Rajnovic <psirt () cisco com>, PSIRT Incident Manager, Cisco Systems <http://www.cisco.com/warp/public/707/sec_incident_response.shtml> Phone: +44 7715 546 033 4 The Square, Stockley Park, Uxbridge, MIDDLESEX UB11 1BN, GB ============== There is no insolvable problems. Question remains: can you accept the solution?
Current thread:
- Re: news story and router passwords, (continued)
- Re: news story and router passwords Ralph Moonen (Oct 12)
- Re: news story and router passwords Lincoln Yeoh (Oct 12)
- Re: news story and router passwords Mark Teicher (Oct 13)
- Re: news story and router passwords Talisker (Oct 13)
- Re: news story and router passwords Mark Teicher (Oct 14)
- Re: news story and router passwords Talisker (Oct 14)
- Re: news story and router passwords Mark Teicher (Oct 14)
- Re: news story and router passwords Jim Duncan (Oct 13)
- Re: Cisco 678 exploit Damir Rajnovic (Oct 12)
- Re: Cisco 678 exploit Joe (Oct 12)
- Re: Cisco 678 exploit Damir Rajnovic (Oct 12)