From: Chris Lewis \(chrlewis\) (chrlewis@cisco.com)
Date: Fri Jul 29 2005 - 23:23:41 GMT-3
Cisco offers a free service called PSIRT. You can find out about it at
http://psirt.cisco.com/
I believe this particular issue is described in the IPv6 crafted packet
vulnerability at
http://www.cisco.com/en/US/products/products_security_advisories_listing
.html
There is also a link to Cisco's response to Mike Lynn's presentation
here. If you are involved in network security on Cisco equipment, PSIRT
is a great resource to leverage.
The established practice for these types of things is to create a patch
to fix any security issues, tell the largest providers and help them
ready their networks, then make the issue and fix known to the public
via PSIRT.
Chris
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
James Ventre
Sent: Friday, July 29, 2005 8:13 PM
To: ccielab@groupstudy.com
Subject: Re: The Cisco, Black Hat News....
a little more informative:
http://www.tomsnetworking.com/Sections-article131-page1.php
James
chon_mon@nym.hush.com wrote:
>Did anyone catch the news on this particular IOS flaw?
>
>http://cbs2.com/finance/CA--Cisco-SecurityCra-
>kf/resources_news_html
>
>Does anyone know which versions have this flaw? Does it affect all
>Cisco devices?
>
>Thanks,
>Sean
This archive was generated by hypermail 2.1.4 : Sun Sep 04 2005 - 17:00:32 GMT-3