<< Previous
IOS/XR
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS devices that are not configured for PIM are not vulnerable.
Cisco IOS XR Software is not affected by this vulnerability. No other
Cisco products are currently known to be affected by this
vulnerability.
Details
=======
Affected Products
=================
This vulnerability affects only Cisco IOS Software Release 15.1(2)T. No
other Cisco IOS Software Releases are affected. Cisco IOS XE Software,
Cisco IOS XR Software, and Cisco NX-OS Software are not affected by this
vulnerability.
Vulnerable Products
+------------------
http://www.cisco.com/web/about/security/intelligence/ios-ref.html
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS XE and Cisco IOS XR Software are not affected by this
vulnerability. No other Cisco products are currently known to be
affected by this vulnerability.
Details
=======
at the following link: http://www.cisco.com/warp/public/620/1.html
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS XR is not affected by these vulnerabilities.
Cisco IOS XE is not affected by these vulnerabilities.
No other Cisco products are currently known to be affected by these
vulnerabilities.
unaffected by this vulnerability.
Cisco products that do not run IOS are unaffected by this
vulnerability.
Cisco IOS-XR is not affected.
No other Cisco products are currently known to be affected by this
vulnerability.
Details
This is a different approach. Can it be combined ? Probably. It is much more
complex ? Yes. Is it going to be architecture specific ? Probably.
Future developments ? I'm surprised people still focus on the IOS side of things
and don't attack the bootrom code as it's smaller and usually never changed
unless you bring in some new/unsupported hardware/features. IOS-XR is
probably going to become a target too as it makes some of these things easier
[11] but code signing may have to be broken/bypassed first. This has been done
on other devices, so it's just one more layer to attack.
An alternative rootkit ? Privilege level 16 used by the Lawful Intercept [12]
+--------------------------------
Cisco devices that are not configured with object groups are not
vulnerable.
Cisco IOS XE Software and Cisco IOS XR Software are not affected by
this vulnerability.
No other Cisco products are currently known to be affected by this
vulnerability.
The SIP Application Layer Gateway (ALG), which is used by the IOS
Network Address Translation (NAT) and firewall features of Cisco IOS,
is not affected by these vulnerabilities.
Cisco devices that are running Cisco IOS XR are not affected.
With the exception of the Cisco Unified Communications Manager, no
other Cisco products are currently known to be vulnerable to the
issues described in this advisory.
* Cisco IOS devices NOT configured with Cisco IOS Zone-Based Policy
Firewall SIP inspection.
* Cisco IOS devices configured with legacy Cisco IOS Firewall
Support for SIP (CBAC)
* Cisco IOS XE Software
* Cisco IOS XR Software
Details
=======
Firewalls are networking devices that control access to the network
!---output truncated
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS XR Software and IOS XE Software are not affected by this
vulnerability.
Cisco IOS devices not explicitly configured for NAT are not
vulnerable.
configured for VPDN protocols other than PPTP are not affected.
Devices that are running Cisco IOS versions prior to 12.3 and do not
have VPDN enabled are not affected by these vulnerabilities.
Cisco IOS XR is not affected by these vulnerabilities.
Details
=======
VPDNs securely carry private data over a public network, allowing
* 12.0-based releases
* 12.1-based releases
* 12.3-based releases
* 12.4-based releases
Cisco IOS XR is not affected.
No other Cisco devices are known to be affected.
Details
=======
http://www.cisco.com/en/US/products/sw/iosswrel/ps1828/products_white_paper09186a008018305e.shtml.
Products Confirmed Not Vulnerable
+--------------------------------
No other Cisco products, including IOS XR software, are currently
known to be affected by this vulnerability.
Details
=======
<more output removed for brevity>
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS XR and IOS XE are not affected by this vulnerability.
Cisco IOS devices not explicitly configured for NAT are not
vulnerable.
No other Cisco products are currently known to be affected by these
http://www.cisco.com/warp/public/620/1.html
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS XR Software is not affected by this vulnerability.
No other Cisco products are currently known to be affected by this
vulnerability.
Details
Cisco devices that do not run IOS are not affected.
Cisco IOS devices that do not have the SSH server feature enabled are
not affected.
IOS-XR images are not affected.
The following IOS release trains are not affected:
* 10-based releases
* 11-based releases
| | |
|----------------------------+-------------------------------|
| Cisco IOS XE Software | CSCtd00658 |
| | |
|----------------------------+-------------------------------|
| Cisco IOS XR Software | CSCtd02658 |
| | |
|----------------------------+-------------------------------|
| Cisco IP Communicator | CSCtd02662 |
| | |
|----------------------------+-------------------------------|
+--------------------------------
* Devices that are running Cisco IOS versions that are not
explicitly listed in the software table below as vulnerable, are
not affected.
* Cisco IOS XR is not affected.
* Cisco IOS XE is not affected.
No other Cisco products are currently known to be affected by this
vulnerability.
Products Confirmed Not Vulnerable
+--------------------------------
The SIP Application Layer Gateway (ALG), which is used by the Cisco
IOS NAT and firewall features of Cisco IOS Software, is not affected
by this vulnerability. Cisco IOS XE Software and Cisco IOS XR
Software are not affected by this vulnerability. No other Cisco
products are currently known to be affected by this vulnerability.
Details
=======
http://www.cisco.com/warp/public/620/1.html
Products Confirmed Not Vulnerable
+--------------------------------
Cisco IOS XE and Cisco IOS XR Software are not affected by this
vulnerability. No other Cisco products are currently known to be
affected by this vulnerability.
Details
=======
* Cisco IOS Software devices without support for NTPv4
* Cisco IOS Software devices configured with only Simple NTP (SNTP)
feature
* Cisco IOS XE Software
* Cisco IOS XR Software
No other Cisco products are currently known to be affected by this
vulnerability.
Details
+--------------------------------
Cisco IOS devices that are configured for Survivable Remote Site
Telephony (SRST) Mode are not affected.
Cisco IOS XR is not affected.
Cisco IOS XE is not affected.
Cisco Unified Communications Manager is not affected.
+--------------------------------
The Cisco ASA 5500 Series Adaptive Security Appliances are not
affected by this vulnerability.
Cisco IOS XR Software is not affected by this vulnerability.
No other Cisco products are currently known to be affected by this
vulnerability.
Details
<<Previous
|
