03-04-2004 02:08 PM
I'm looking the security Vulnerability for CSS.
http://www.cisco.com/warp/public/707/cisco-sa-20040304-css.shtml
The doc describes "vulnerability exists even when the Network Proximity feature is not configured".
Do I need code upgrade even I don't have the Network Proximity feature on the CSS ? Is this mendatory ?
Thanks,
03-10-2004 09:32 AM
I guess the app-udp was done for proximity. Although the proximity feature is not configured, the releases would be vulnerable and that is what the document mentions too. It would be safer for you to upgrade.
03-12-2004 10:41 PM
You still face the vulerability, even without Network Proximity. However, if you don't use the Ethernet management port, there is no vulnerability. The only port that can be attacked by this is the Management inteface.
03-18-2004 02:36 PM
Hi, about this vulnerability, I have two CSS11051 with the following maintanance releases:
1) 5.03 build 15
2) 5.00 build 45
Are these releases affect ?
regards.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: