[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PIX Firewall 5.1 DoS Vulnerability

To: BUGTRAQ@SECURITYFOCUS.COM
Subject: Re: PIX Firewall 5.1 DoS Vulnerability
From: "Snow, Corey" <CSNOW@DDPWA.COM>
Date: Thu, 19 Apr 2001 08:50:26 -0700

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

Following up...

> -----Original Message-----
> From: Scott Raymond [mailto:scott@LINK-NET.COM]
> Sent: Wednesday, April 11, 2001 4:23 PM
> To: BUGTRAQ@SECURITYFOCUS.COM
> Subject: Re: [BUGTRAQ] PIX Firewall 5.1 DoS Vulnerability
>
>
> By the way, I recently upgraded a PIX 515 at work.  The folks at Cisco
> inform me that the latest software binary image, 5.3.1, is
> broken.  They
> suggest upgrading to 5.2.5, which has all of the updates in 5.3.1,
> including the elimination of the DoS vulnerability.
>

I sent this message on to the guy where I work who manages our PIX Firewalls
and he spent some cycles on the horn with the Cisco tech types- the short
answer is that Cisco told him there were no known DoS attacks against 5.3.1.
According to Cisco, the 5.2.5 release came out *after* 5.3.1 but was
designed for people to move out of the 4.x version of the PIX IOS. 5.3.1
does have a number of known bugs, to be sure, but none that match the
description above.

Corey M. Snow- csnow@ddpwa.com
Senior Web Developer, Washington Dental Service
(206) 528-7361, Mobile (360) 481-2563
FAX: (206) 985-4939
Web: http://www.deltadentalwa.com

Prev by Date: Re: multiple vulnerabilities in Alcatel Speed Touch DSL modems
Next by Date: [CLA-2001:394] Conectiva Linux Security Announcement - kernel
Prev by thread: Re: PIX Firewall 5.1 DoS Vulnerability
Next by thread: Re: qDefense Advisory: DCForum allows remote read/write/execute
Index(es):
- Date
- Thread