Incident Response Team
error messages belong to different categories such as Alerts, Startup, Operational
and Policy Errors, so, I'm assuming that the OPTIONS HTTP method doesn't fit in
none of the mentioned categories, resulting in a message explaining that there's
no handler for this type of request which discloses an internal IP address.
Cisco PSIRT (Product Security Incident Response Team) responded by saying that the
bug is triggered not only by the OPTIONS request. Internal IP address is included
in response if ACE XML Gateway was not able to find a matching handler for the
request. Also, the PSIRT verified that GET request, with a path for which no
handler was configured, results in the same address disclosure.
212-327-7508
646-772-4667(cell)
-----Original Message-----
From: nobody@cisco.com [mailto:nobody@cisco.com] On Behalf Of Cisco Systems
Product Security Incident Response Team
Sent: Wednesday, January 23, 2008 11:34 AM
To: bugtraq@securityfocus.com
Cc: psirt@cisco.com
Subject: Cisco Security Advisory: Cisco PIX and ASA Time-to-Live
Vulnerability
numbers, instructions, and e-mail addresses for support in various languages.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not
aware of any public announcements or malicious use of the
vulnerabilities that are described in this advisory.
These vulnerabilities were found during internal testing.
languages.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not
aware of any public announcements or malicious use of the
vulnerability that is described in this advisory.
This vulnerability was reported to Cisco by Will Dormann of the CERT/CC.
http://www.ivizsecurity.com/research/preboot/preboot_whitepaper.pdf
- --[ Vendor response:
* Intel Product Security Incident Response Team (iPSIRT) has
aknowledged the vulnerability and is proactively working on a fix.
- --[ Credits:
This vulnerability was discovered by Security Researcher
There was a Cisco Product Security Incident Response Team (PSIRT)
advisory recently concerning some XSS/CSRF holes in the IOS..
quote{
Document ID: 98605
http://www.cisco.com/warp/public/707/cisco-sr-20090114-http.shtml
Revision 1.0
For Public Release 2009 January 14 1600 UTC (GMT)
Cisco Response:
Permalink:
http://www.ocert.org/advisories/ocert-2011-002.html
--
Daniele Bianco Open Source Computer Security Incident Response Team
<danbia@ocert.org> http://www.ocert.org
GPG Key 0x9544A497
GPG Key fingerprint = 88A7 43F4 F28F 1B9D 6F2D 4AC5 AE75 822E 9544 A497
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not aware
of any public announcements or malicious use of the vulnerabilities
that are described in this advisory.
These vulnerabilities were found during internal testing and during
the troubleshooting of customer service requests.
Cheers,
- --
Eloy Paris
Cisco Product Security Incident Response Team (PSIRT)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkqO0qAACgkQagjTfAtNY9hpqgCcDk4ruXQJawvZvu3AOBMmk6Gv
14IAn1LSuLRaF5NpiT4EJRYESOdzqgjJ
languages.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not
aware of any public announcements or malicious use of the
vulnerability that is described in this advisory.
Status of This Notice: Final
============================
--
Eloy Paris.-
CCIE #19207
Product Security Incident Response Team (PSIRT)
Cisco Systems, Inc.
Permalink:
http://www.ocert.org/advisories/ocert-2011-001.html
--
Andrea Barisani | Founder & Project Coordinator
oCERT | OSS Computer Security Incident Response Team
<lcars@ocert.org> http://www.ocert.org
0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E
"Pluralitas non est ponenda sine necessitate"
See the Obtaining Fixed Software section of this advisory.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not aware
of any public announcements or malicious use of the vulnerabilities
that are described in this advisory.
These vulnerabilities were reported to Cisco by Michal Sajdak of
Securitum, Poland.
Permalink:
http://www.ocert.org/advisories/ocert-2011-003.html
--
Andrea Barisani | Founder & Project Coordinator
oCERT | OSS Computer Security Incident Response Team
<lcars@ocert.org> http://www.ocert.org
0x864C9B9E 0A76 074A 02CD E989 CE7F AC3F DA47 578E 864C 9B9E
"Pluralitas non est ponenda sine necessitate"
Exploitation and Public Announcements
=====================================
These vulnerabilities were publicly disclosed on Bugtraq on November
8, 2011. The Cisco Product Security Incident Response Team (PSIRT) is
not aware of any malicious use of the vulnerabilities described in
this advisory.
These vulnerabilities were reported to Cisco by Felix Lindner of
Recurity Labs GmbH and discovered by Sandro Gauci.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not aware
of any public announcements or malicious use of the vulnerability that
is described in this advisory.
The vulnerability described in this security advisory was found during
the resolution of a customer support case.
IronPort appliances was publicly disclosed by the FreeBSD Project on
December 23rd, 2011. The FreeBSD Project advisory is available at:
http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc
The Cisco Product Security Incident Response Team (PSIRT) is aware of
exploit modules for the Metasploit Framework that can exploit this
vulnerability on affected Cisco IronPort appliances.
Status of This Notice: Interim
==============================
languages.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not
aware of any public announcements or malicious use of the
vulnerability that is described in this advisory.
This vulnerability was discovered while working on customer support
cases.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not aware
of any public announcements or malicious use of the vulnerabilities
that are described in this advisory
All the vulnerabilities described in this security advisory were found
during internal testing or discovered during the resolution of
+---------------------------------------------------------------------
Cisco Response
==============
This is the Cisco Product Security Incident Response Team (PSIRT)
response to a posting entitled "Cisco Unified Videoconferencing
multiple vulnerabilities" by Florent Daigniere of Matta Consulting
regarding vulnerabilities in the Cisco Unified Videoconferencing
(Cisco UVC) 5100 series products. Several of the vulnerabilities also
impact Cisco Unified Videoconferencing 5200 and 3500 Series Products.
various languages.
Exploitation and Public Announcements
=====================================
The Cisco Product Security Incident Response Team (PSIRT) is not
aware of any public announcements or malicious use of the
vulnerability that is described in this advisory.
The vulnerabilities described in this advisory were found during
internal testing or discovered during the resolution of customer
Jim
--
James N. Duncan, CISSP
Manager, Juniper Networks Security Incident Response Team (Juniper SIRT)
E-mail: jduncan@juniper.net Mobile: +1 919 608 0748
PGP key fingerprint: E09E EA55 DA28 1399 75EB D6A2 7092 9A9C 6DC3 1821
Theresa
-----Original Message-----
From: nobody@cisco.com [mailto:nobody@cisco.com] On Behalf Of Cisco
Systems Product Security Incident Response Team
Sent: Wednesday, May 14, 2008 12:15 PM
To: bugtraq@securityfocus.com
Cc: psirt@cisco.com
Subject: Cisco Security Advisory: Cisco Unified Presence Denial of
Service Vulnerabilities
|
