Page 1 of 2 12 LastLast
Results 1 to 10 of 16

Thread: Cisco IOS 12.3 and 12.3t source leaked

  1. #1
    Senior Member deftones12's Avatar
    Join Date
    Jan 2003
    Location
    cali forn i a
    Posts
    333

    Cisco IOS 12.3 and 12.3t source leaked

    Cisco's IOS software for versions i think 12.3 and 12.3t sources have been leaked. I have a small part of the souce, only 2 of the source files. Anyone else hear about this? I dont know if posting the source files are a good idea or not on here?

  2. #2
    Senior Member cwk9's Avatar
    Join Date
    Feb 2002
    Posts
    1,207
    These the two files you’re referring to?
    http://www.securitylab.ru/45221.html

  3. #3
    Senior Member deftones12's Avatar
    Join Date
    Jan 2003
    Location
    cali forn i a
    Posts
    333
    yeah, i didnt know if it was alright to post them or not, someone woulda negged me a billion times for givin the board a bad reputation or something. I havent heard anything from cisco or nothing, no press releases or nothin.

  4. #4
    @ÞΜĮЙǐЅŦГǻţΩЯ D0pp139an93r's Avatar
    Join Date
    May 2003
    Location
    St. Petersburg, FL
    Posts
    1,705
    If it is proprietary source code for a CURRENT system, I would say no.

    Don't post it, it's just wrong.
    Real security doesn't come with an installer.

  5. #5
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,323
    I havent heard anything from cisco or nothing, no press releases or nothin.
    Indeed, which makes me wonder how true this leak is. I haven't seen it anywhere (not even on sensational CNN.com) where it would be validated a true (a reliable source like securityfocus.com, incidents.org, heck, even The Toronto Star). I got told in another forum that because CISCO isn't replying it must be true. I have doubts since if it was true and was serious, they would have dealt with it.

    Has anyone seen it at a reliable source yet beyond the Russian site (they've published stuff before that was sensational and never hit any other place).
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  6. #6
    @ÞΜĮЙǐЅŦГǻţΩЯ D0pp139an93r's Avatar
    Join Date
    May 2003
    Location
    St. Petersburg, FL
    Posts
    1,705
    I got told in another forum that because CISCO isn't replying it must be true.
    By that logic, JFK really was killed by the CIA, Elvis really is still alive, and Tupac is in the Bahamas.

    EDIT: Slashdot has the story, it may be tue...
    Real security doesn't come with an installer.

  7. #7
    Senior Member cwk9's Avatar
    Join Date
    Feb 2002
    Posts
    1,207
    Here is a link that sheds a little more light on the situation. http://arstechnica.com/news/posts/1084683212.html
    Now with out a significant portion of the code or an official statement from Cisco it will be hard to tell what’s real and what’s BS.

    I wonder how many vulnerabilities will see from this if the whole code ends up in circulation?
    Its not software piracy. I’m just making multiple off site backups.

  8. #8
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,323
    Slashdot has the story, it may be tue...
    I looked and couldn't see it. Gotta link?

    Here is a link that sheds a little more light on the situation. http://arstechnica.com/news/posts/1084683212.html
    Not really. They are merely commenting on the SecurityLabs claim and aren't adding anything new, other than an opinion of the "what if".
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  9. #9
    Leftie Linux Lover the_JinX's Avatar
    Join Date
    Nov 2001
    Location
    Beverwijk Netherlands
    Posts
    2,534
    http://news.com.com/2100-7349_3-5213724.html

    An unspecified amount of the proprietary source code that drives Cisco Systems' networking hardware has appeared on the Internet, the technology giant acknowledged early Monday.

    While the company was investigating whether a breach had lead to the leak, a representative could not confirm whether that network intruders had made off with the software equivalent of the crown jewels: some 800 megabytes of the networking giant's source code.
    ASCII stupid question, get a stupid ANSI.
    When in Russia, pet a PETSCII.

    Get your ass over to SLAYRadio the best station for C64 Remixes !

  10. #10
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,323
    Now that is a confirmation and that means ugly and scary possibilities.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •