The advisory specifically says, "Cisco PIX security appliances running versions 6.x are not vulnerable."
Frank -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ariel Biener Sent: Monday, June 09, 2008 3:26 PM To: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA Hi folks, The newest batch of vulnerabilities for ASA (and PIX) have references only to 7.x and 8 ASA/PIX OS. There is however a vague remark that any earlier versions than 7.x are vulnerable, but it is not clear whether it only refers to the 7 train, or also 6.x. The vulnerability table at the end of the report doesn't mention 6.x either. Now, my understanding of this is that 6.x is not vulnerable, or at least that this report doesn't cover 6.x. My superiors however requested a more formal "analysis", that is, someone from Cisco either refuting or acknowledging my understanding of the report. So, does this new report apply to 6.x, or doesn't it ? Thanks. --Ariel -- Ariel Biener e-mail: [EMAIL PROTECTED] PGP: http://www.tau.ac.il/~ariel/pgp.html _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/