Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Urgent - CSS vulnerability

I'm looking the security Vulnerability for CSS.

http://www.cisco.com/warp/public/707/cisco-sa-20040304-css.shtml

The doc describes "vulnerability exists even when the Network Proximity feature is not configured".

Do I need code upgrade even I don't have the Network Proximity feature on the CSS ? Is this mendatory ?

Thanks,

3 REPLIES
Silver

Re: Urgent - CSS vulnerability

I guess the app-udp was done for proximity. Although the proximity feature is not configured, the releases would be vulnerable and that is what the document mentions too. It would be safer for you to upgrade.

New Member

Re: Urgent - CSS vulnerability

You still face the vulerability, even without Network Proximity. However, if you don't use the Ethernet management port, there is no vulnerability. The only port that can be attacked by this is the Management inteface.

New Member

Re: Urgent - CSS vulnerability

Hi, about this vulnerability, I have two CSS11051 with the following maintanance releases:

1) 5.03 build 15

2) 5.00 build 45

Are these releases affect ?

regards.

218
Views
0
Helpful
3
Replies
CreatePlease to create content