Source : http://www.cisco.com/warp/public/707...-grppass.shtmlQuote:
This Security Notice is being released due to the new information received by Cisco PSIRT regarding the Cisco IPsec VPN implementation, Group Password Usage Vulnerability.
Printable View
Source : http://www.cisco.com/warp/public/707...-grppass.shtmlQuote:
This Security Notice is being released due to the new information received by Cisco PSIRT regarding the Cisco IPsec VPN implementation, Group Password Usage Vulnerability.
Wow... cisco's almost has as many vuln's as m$ lately... wonder whats going on over there...
Well at least they are reporting these...and maybe they are doing more vulnerability research with their products. They should since they are trying to be a security company as well as network.
Just hope there's no new serious IOS vuln. Oh crap hope I didn't jinx it by saying that.
You did jinx it and there are quite a few more vulnerabilities, but you can wait and see about those. Cisco is quite good about reporting known vulnerabilities and it's poretty good about testing for vulnerabilities. Nothing made by man is perfect. So don't look down your nose at them.
Cisco has always had issues and will continue to have issues but the real question is ........How many people can actually exploit these vulnerabilities? Comparing them to M$ is ludicrous IMHO. Any script kiddie in the world can download a proggy and exploit M$ vulnerabilities, but it's not so with Cisco.