[164818] in North American Network Operators' Group
Re: OSPF Vulnerability - Owning the Routing Table
daemon@ATHENA.MIT.EDU (Jeff Tantsura)
Sat Aug 3 17:09:43 2013
From: Jeff Tantsura <jeff.tantsura@ericsson.com>
To: "excelsio@gmx.com" <excelsio@gmx.com>
Date: Sat, 3 Aug 2013 21:09:13 +0000
In-Reply-To: <51FCBD68.1090601@gmx.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Hi,
As for Ericsson (Redback) products.
We found the issue quite some time ago and fixed it immediately.
Smart Edge code base (SEOS) has been fixed back to the release 6.3
SSR code base (IPOS) - not affected.
Please let me know if you have got any questions.
Regards,
Jeff
On Aug 3, 2013, at 10:25, "excelsio@gmx.com" <excelsio@gmx.com> wrote:
> So, only Cisco and Juniper are hit by this one? What about "the rest"?
> Michael
>=20
>=20
> Am 02.08.2013 21:34, schrieb John Stuppi (jstuppi):
>> Yes, these advisories (from both Cisco and Juniper), covering CVE-2013-0=
149, are both related to the announcement yesterday (1-Aug) at BlackHat reg=
arding the OSPF LSA Manipulation vulnerability.=20
>>=20
>> Thanks,
>> John
>>=20
>> =93Optimism is the faith that leads to achievement. Nothing can be done =
without hope and confidence=94.
>>=20
>>=20
>>=20
>>=20
>>=20
>> John Stuppi, CISSP
>> Technical Leader
>> Strategic Security Research
>> jstuppi@cisco.com
>> Phone: +1 732 516 5994
>> Mobile: 732 319 3886
>>=20
>> CCIE, Security - 11154
>> Cisco Systems
>> Mail Stop INJ01/2/=20
>> 111 Wood Avenue South=20
>> Iselin, New Jersey 08830
>> United States
>> Cisco.com
>=20
>=20
