| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <4CBACF4FA9CE1046907D5132920D794D0192C884@clw1.SKT.ICT> Date: Thu, 25 Jan 2007 22:47:25 -0600 From: "Justin Shore" <justin.shore@...bcs.com> To: <andre@...rations.net>, "Kevin Graham" <mahargk@...il.com> Cc: full-disclosure@...ts.grok.org.uk, nanog@...it.edu, cisco-nsp@...k.nether.net Subject: Re: [c-nsp] Cisco Security Advisory: Crafted IP Option Vulnerability Now that you mention it, I did have a Pix running 7.1.2 mysteriously reboot twice today. What are the odds that this vulnerability affects more than just IOS 9-12? Justin -----Original Message----- From: cisco-nsp-bounces@...k.nether.net [mailto:cisco-nsp-bounces@...k.nether.net] On Behalf Of Andre Gironda So it's too late. Don't bother upgrading now; you're already owned. Unless they are blocking it at the ISP borders in the same way they blocked out the Cisco IPv4 Crafted DoS vulnerability in 2003. ISP's probably got the patch (or at least Cisco's ISP's did) a week ago. Had rolling reboots lately? Don't know why? Lots of "miscellaneous" ISP maintenace. I wonder... _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists