[c-nsp] Old PSIRT still around

Church, Charles Charles.Church at harris.com
Wed May 5 09:44:32 EDT 2010


Anyone,

      Our IA scanning people (using eEye's Retina) are telling me come recent IOSs we're running (12.2(33)SXI3 and 15.0(1)M2) are vulnerable to the BGP regular expression issue from almost 3 years ago.  This one:

http://www.cisco.com/en/US/products/products_security_response09186a00808bb91c.html

Looking at the bug ID CSCsk33054, it's a bit confusing what has fixes for it.  12.4(15)T2 is listed in the '1st found in' section, and also in the 'Fixed in' section.  But under 'known affected versions' link, 15.0(1)M1 is listed, which came out well after 12.4(15)T2.  For the 6500s, it does appear to be fixed in SXF13 and more recent SXH versions.  SXI appears to never have had it.  But the 12.4T and 15.0 thing has me a bit confused.  Can anyone shed some light on that for me?

Thanks,

Chuck


More information about the cisco-nsp mailing list