[c-nsp] Cisco Security Advisory: Cisco IOS Software RSVP Vulnerability

Peter Rathlev peter at rathlev.dk
Wed Sep 24 14:55:18 EDT 2014


On Wed, 2014-09-24 at 12:23 -0400, Cisco Systems PSIRT wrote:
> Cisco IOS Software RSVP Vulnerability
...

Thank you to PSIRT for generally thorough advisories. :-)

I have a grievance though: The "Cisco IOS Software" section of "Software
Versions and Fixes" not longer includes a comprehensive list of affected
IOS releases but instead refers to the IOS Software Checker tool.

The IOS Software Checker tool is really nice in itself, but if you for
some reason have several different IOS releases running in your network
then checking each of these via lookup is a lot slower than just
skimming the list in the advisory.

Since the advisory contains a lot of information already, and since it's
beautifully organised into sections, I think a comprehensive list like
it has been before is a really good idea.

An example of an advisory with the comprehensive list:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-rsvp

Just my to zhents of course. :-)

-- 
Peter





More information about the cisco-nsp mailing list