[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption)
- To: Jan Muenther <jan.muenther@xxxxxxxxx>
- Subject: Re: [Full-Disclosure] Re: DOS in Brocade switches (was: Engenio/LSI Logic controllers denial of service/data corruption)
- From: Jedi/Sector One <j@xxxxxxxxxxxx>
- Date: Sun, 5 Sep 2004 09:33:55 +0159
On Sun, Sep 05, 2004 at 08:48:46AM +0200, Jan Muenther wrote:
> just a simple question, but have you talked to Wind River or whoever does
> vxWorks these days...?
Yes. There's no difference between regular support requests and security
issues. They demand a valid VxWorks license number before having a look at
the content of mails. But as I am only using devices that embed VxWorks, I've
none and this is a no go.
Since Brocade has a fix, maybe VxWorks did it silently at the first place.
BTW Brocade has confirmed that any switch running pre-3.2 code is
vulnerable, including models 3800, 3200 and 2800. Latest models will all run
Linux instead.
--
__ /*- Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com> -*\ __
\ '/ <a href="http://www.PureFTPd.Org/";> Secure FTP Server </a> \' /
\/ <a href="http://www.Jedi.Claranet.Fr/";> Misc. free software </a> \/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html