cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1198
Views
0
Helpful
2
Replies

Cisco IOS Software Internet Key Exchange Vulnerability Enquiry

yenaungoo
Level 1
Level 1

Affected Products

Cisco IOS devices are vulnerable when running a software image of an affected version of Cisco IOS Software that does not support IKE version 2 (IKEv2) and is configured to use IKE version 1 (IKEv1).

Vulnerable Products

This vulnerability affects the 15.1GC, 15.1T, and 15.1XB Cisco IOS Software release trains. No other Cisco IOS Software release trains are affected.

               

Ref: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-ike

What happen if we are using "not affected version (eg; 12.4, 15.0 releases)" and configured with IKE version1?  Can it be affected by this vulnerability?

Router #sh subsys | include ikev2

ikev2_cli_registry Registry   1.000.001

Thanks & Regards,

Ye

1 Accepted Solution

Accepted Solutions

Marvin Rhoads
Hall of Fame
Hall of Fame

You are not affected by this vulnerability.

As the notice states - "There are no affected 12.4 based releases" and "There are no affected 15.0 based releases".

View solution in original post

2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

You are not affected by this vulnerability.

As the notice states - "There are no affected 12.4 based releases" and "There are no affected 15.0 based releases".

yenaungoo
Level 1
Level 1

Thanks, Marvin.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: