[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Cisco ACE XML Gateway <= 6.0 Internal IP disclosure

To: Richard Cyrios <r.u.cyrios@xxxxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Cisco ACE XML Gateway <= 6.0 Internal IP disclosure
From: Jeremy Brown <0xjbrown41@xxxxxxxxx>
Date: Fri, 25 Sep 2009 01:25:02 -0400

Well thats not very nice.

On Fri, Sep 25, 2009 at 12:53 AM, Richard Cyrios <r.u.cyrios@xxxxxxxxx> wrote:
>
>>> 24/09/2009    Tonight!, the vulnerability goes public and PSIRT is
>>> informed.
>
> .... and the world is thrown into chaos via an internal IP being disclosed.
>
>>>08/09/2009    The PSIRT Incident Manager took the ownership of the
>>> vulnerability.
>>>11/09/2009    Developers confirmed the vulnerability. Code fixes and
>>> testing
>>>remained pending.
>>>Green flag given to go public whenever I'd like.
>
> Cos they think it's a gay vuln....
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Cisco ACE XML Gateway <= 6.0 Internal IP disclosure
  - From: Richard Cyrios

Prev by Date: Re: [Full-disclosure] Cisco ACE XML Gateway <= 6.0 Internal IP disclosure
Next by Date: [Full-disclosure] Attacks via redirectors
Previous by thread: Re: [Full-disclosure] Cisco ACE XML Gateway <= 6.0 Internal IP disclosure
Next by thread: Re: [Full-disclosure] Cisco ACE XML Gateway <= 6.0 Internal IP disclosure
Index(es):
- Date
- Thread