[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <1069850734.3fc4a06e7a139@saharu.com>
From: security at saharu.com (William Brady)
Subject: Nokia IPSO
Greetings,
You in fact can talk about the security of Nokia appliances. They are running
a *nix based kernel and Check Point firewall.
Recently a cross-site scripting or script injection vulnerability was posted
to BugTraq and subsequently to SecuriTeam. FishNet Security was cited for the
discovery :
http://www.fishnetsecurity.com/CSIRT/disclosure/Nokia/Nokia.Voyager.Threat.Detai
ls.pdf
@Stake also released a vulnerability in the Nokia Appliances back in June.
http://www.atstake.com/research/advisories/2003/a060903-1.txt
It seems as though the vulnerabilities are far and few between, currently.
Bear in mind that posts that don't explicitly say Nokia could still be relevant
due to the underlying operating system and other software. I actually forget if
the OS is a rip of linux or bsd, but either way there would still be "other
issues".
Also, if you are talking about jsut security practices, there are a handful of
lists off SecurityFocus you could subscribe to.
Flames off-list, please.
-William
Quoting Sandro Littke <sl@...ec.net>:
> On Wed, 2003-11-26 at 10:35, Frederic Charpentier wrote:
> > hi, does anyone know a mailing list (or web site) about Nokia IPSO
> > security ?
> >
> > Fred
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> ^^^^^^^^^^^^^^^^
>
> Hi, you cant talk about security of a thing that is a black box actually
> :-(
>
> Sandro.
> --
> Sandro Littke <sl@...ec.net>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
--------------------------------
Saharu Communications, Inc.
Network Security Business Unit
http://www.saharu.com
--------------------------------
Powered by blists - more mailing lists