[f-nsp] OpenSSH vulnerability
Jeremy Noetzelman
jnoetzelman at mystrotv.com
Wed Sep 17 15:19:16 EDT 2003
Foundry doesn't use OpenSSH, so no, it shouldn't be.
Juniper does use OpenSSH, so it stands to reason that they are.
J
-----Original Message-----
From: foundry-nsp-bounces at puck.nether.net
[mailto:foundry-nsp-bounces at puck.nether.net] On Behalf Of Andrew Lee
Sent: Wednesday, September 17, 2003 12:51 PM
To: foundry-nsp at puck.nether.net
Subject: [f-nsp] OpenSSH vulnerability
Is Foundry gear vulnerable to the remote exploit
(http://www.cert.org/advisories/CA-2003-24.html) in the OpenSSH engine?
Apparently some Cisco gear is:
http://www.cisco.com/warp/public/707/cisco-sa-20030917-openssh.shtml
because they used the OpenSSH engine in CatOS (PIX and IOS are not). I
hear rumblings that Juniper is as well.
There doesn't seem to be anything on the web site, their latest press
release was 9/8.
It would be nice to know for sure one way or the other.
_______________________________________________
foundry-nsp mailing list
foundry-nsp at puck.nether.net
http://puck.nether.net/mailman/listinfo/foundry-nsp
More information about the foundry-nsp
mailing list