North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

RE: Cisco IOS Vulnerability

  • From: Darrell Kristof
  • Date: Thu Jul 17 02:09:15 2003

If Cisco made THIS big a deal of this to not release info to the public,
I wouldn't wait.  There must be a reason.  I had to push and push to get
any info and I think they finally gave up because too many people knew.
If you notice

For Public Release 2003 July 17 at 0:00 UTC (GMT)

But at the bottom is says:
This notice will be posted on the Cisco worldwide website at at
21:00 GMT on July 17th, 2003. 

Hmmm... I think that means 4PM CT TOMORROW!  From what I understand they
didn't want this to be public until tomorrow afternoon.

- D

-----Original Message-----
From: [email protected] [mailto:[email protected]] On Behalf Of
Mikael Abrahamsson
Sent: Thursday, July 17, 2003 12:48 AM
To: [email protected]
Subject: RE: Cisco IOS Vulnerability

On Wed, 16 Jul 2003, Darrell Kristof wrote:

> Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 Packet 

IS anyone seeing this exploited in the wild? It'd be good to know if we 
need to do panic upgrade or can schedule it for our next maintenance 
window (which is during the weekend).

Mikael Abrahamsson    email: [email protected]