Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2006-07-27 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Thunderbird Download Link

Published: 2006-07-28
Last Updated: 2006-07-28 19:51:14 UTC
by Chris Carboni (Version: 2)
0 comment(s)
Juha-Matti dropped us a note to say that although the 1.5.0.5 version of Thunderbird (which fixes the Thunderbird vulnerabilities discussed here is not available on the Thunderbird web site it is available at this mirror site.

Update: (2006-07-28 19:50 UTC) 1.5.0.5 is now available at the main site above and will be automatically downloaded if you choose the "check for updates" from the Help menu.
Keywords:
0 comment(s)

Cisco IKE Resource Exhaustion Attack

Published: 2006-07-27
Last Updated: 2006-07-27 12:44:05 UTC
by Chris Carboni (Version: 1)
0 comment(s)
Fred sent us a note after recieving e-mail from Cisco.

""The attack against the Internet Key Exchange (IKE) protocol described in the NTA Monitor advisory exploits the stateless nature of the IKE version 1 protocol. The goal of such an attack is to deplete the resources available on a device to negotiate IKE security associations, and block legitimate users from establishing a new security association.""

Cisco states "This vulnerability is not related to a specific vendor implementation, but to underlying issues in the IKE protocol, and may affect any device which implements IKE version"

There is a workaround available for IOS, but not for any other Cisco products.

Cisco's full response can be found here.

Check with your vendor for other systems you have that use IKE version 1.


Keywords:
0 comment(s)
Diary Archives