Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2004-11-11 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Cisco IOS DHCP vulnerability; Rumours about vulnerabilities in Win XP SP2

Published: 2004-11-11
Last Updated: 2004-11-11 23:37:04 UTC
by Jason Lam (Version: 1)
0 comment(s)
Cisco IOS DHCP DoS vulnerability

Cisco IOS version 12.2S is found to be vulnerable to a DoS attack when DHCP server or relay agent is enabled. Cisco has a fix ready (see link below). There are also many workarounds for this vulnerability, such as disabling the DHCP service (no service dhcp), using QoS or using ACL to block potential attack. Please refer to the URL below for details.

http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml



Rumours about Windows SP2 vulnerabilities

Finjan software announced that they have found 10 vulnerabilities in Windows XP SP2 and they have notified Microsoft about these vulnerabilities.

If these claims are true, we might have to do a lot of patching on XP machines soon.

http://www.vnunet.com/news/1159322

http://www.winnetmag.com/Article/ArticleID/44502/44502.html




--------------------------------

Handler on Duty

Jason Lam Email: jason /at/ networksec.org
Keywords:
0 comment(s)
Diary Archives