18 Jul
2003
18 Jul
'03
6:24 a.m.
It appears Cisco has seen the posting too. The Cisco PSIRT updated their announcement to 1.4 at 5am this morning. The sentence in the "Exploitation and Public Announcments" section is new and states that they are aware that the exploitation "has been publised on a public mailing list". The link is the same, but the version number has changed: http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml Len Rose wrote:
It seems to work.
On Fri, Jul 18, 2003 at 02:39:18AM -0400, Len Rose wrote:
This was posted a while ago.
http://lists.netsys.com/pipermail/full-disclosure/2003-July/011421.html http://lists.netsys.com/pipermail/full-disclosure/2003-July/011420.html
I haven't had the chance to test it in a controlled environment yet.