[c-nsp] Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA
Frank Bulk
frnkblk at iname.com
Mon Jun 9 16:39:40 EDT 2008
The advisory specifically says, "Cisco PIX security appliances running
versions 6.x are not vulnerable."
Frank
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Ariel Biener
Sent: Monday, June 09, 2008 3:26 PM
To: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Cisco Security Advisory: Multiple Vulnerabilities in
Cisco PIX and Cisco ASA
Hi folks,
The newest batch of vulnerabilities for ASA (and PIX) have references
only
to 7.x and 8 ASA/PIX OS. There is however a vague remark that any earlier
versions than 7.x are vulnerable, but it is not clear whether it only refers
to the 7 train, or also 6.x.
The vulnerability table at the end of the report doesn't mention 6.x
either. Now, my understanding of this is that 6.x is not vulnerable, or at
least that this report doesn't cover 6.x. My superiors however requested
a more formal "analysis", that is, someone from Cisco either refuting or
acknowledging my understanding of the report.
So, does this new report apply to 6.x, or doesn't it ?
Thanks.
--Ariel
--
Ariel Biener
e-mail: ariel at post.tau.ac.il
PGP: http://www.tau.ac.il/~ariel/pgp.html
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list