[13946] in North American Network Operators' Group
RE: OPS: SECURITY new packet of death
daemon@ATHENA.MIT.EDU (Darin Fisher)
Fri Nov 21 17:11:33 1997
From: Darin Fisher <oz@axent.com>
To: nanog@merit.edu
Date: Fri, 21 Nov 1997 15:05:00 -0700
Other vulnerabilities:
Cisco PIX NOT vulnerable
Wellfleet NOT vulnerable
NPI EIFO vulnerable (doesn't shut the system down, but
you can no longer monitor from telnet)
IRIX 5.3 vulnerable
IRIX 6.4 NOT vulnerable
SunOS 4.1.3 vulnerable
Solaris 2.4 NOT vulnerable
Solaris 2.5.1 NOT vulnerable
Ultrix (all) vulnerable
HPUX 9.x vulnerable
HPUX 10.x NOT vulnerable
AIX 3.2.5 NOT vulnerable
AIX 4.1 NOT vulnerable
WinNT (w/ service pack 3) a little vulnerable (slows the
system 'till SYN timeout)
Win95 (w/ service pack 1) NOT vulnerable (
NCDware 3.3.2 vulnerable
Linux 2.0.30 NOT vulnerable
Novell 3.11 NOT vulneralbe
Novell 3.12 NOT vulnerable
Novell 4.10 NOT vulnerable
Motorola SVR5 3.0 NOT vulnerable
> -----Original Message-----
> From: Michael Behrens [SMTP:michael@gothmog.kingston.net]
> Sent: Friday, November 21, 1997 12:51 PM
> To: nanog@merit.edu
> Subject: Re: OPS: SECURITY new packet of death
>
> On Fri, 21 Nov 1997, Stan Barber wrote:
>
> > BugTraq has a note that version 10.3(7) is vunerable. I don't know
> which
> > version of Cisco the IOS was running on.
>
> version 11.1(5) is vulnerable.
>
> Michael
>
> |InterNet Kingston #177 Wellington St. Ste #302|
> |Kingston, Ontario K7L3E3, Canada |
> |http://www.kingston.net Bigger, Better, Local |
