[Full-disclosure] [c-nsp] Cisco Security Advisory: Crafted IP Option Vulnerability
Justin Shore
justin.shore at sktbcs.com
Fri Jan 26 04:47:25 GMT 2007
Now that you mention it, I did have a Pix running 7.1.2 mysteriously
reboot twice today. What are the odds that this vulnerability affects
more than just IOS 9-12?
Justin
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Andre Gironda
So it's too late. Don't bother upgrading now; you're already owned.
Unless they are blocking it at the ISP borders in the same way they
blocked out the Cisco IPv4 Crafted DoS vulnerability in 2003. ISP's
probably got the patch (or at least Cisco's ISP's did) a week ago.
Had rolling reboots lately? Don't know why? Lots of "miscellaneous"
ISP maintenace. I wonder...
Full-Disclosure is hosted and sponsored by Secunia.