[c-nsp] Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA
Ariel Biener
ariel at post.tau.ac.il
Mon Jun 9 16:25:48 EDT 2008
Hi folks,
The newest batch of vulnerabilities for ASA (and PIX) have references only
to 7.x and 8 ASA/PIX OS. There is however a vague remark that any earlier
versions than 7.x are vulnerable, but it is not clear whether it only refers
to the 7 train, or also 6.x.
The vulnerability table at the end of the report doesn't mention 6.x
either. Now, my understanding of this is that 6.x is not vulnerable, or at
least that this report doesn't cover 6.x. My superiors however requested
a more formal "analysis", that is, someone from Cisco either refuting or
acknowledging my understanding of the report.
So, does this new report apply to 6.x, or doesn't it ?
Thanks.
--Ariel
--
Ariel Biener
e-mail: ariel at post.tau.ac.il
PGP: http://www.tau.ac.il/~ariel/pgp.html
More information about the cisco-nsp
mailing list