Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ISE 1.2.0.899 vulnerable to Shellshock?

Hi, I just saw that version 1.2(0.747) is vulnerable. How about 1.2.0.899?

https://tools.cisco.com/bugsearch/bug/CSCur00532

KR

4 REPLIES
New Member

I've asked the PSIRT Team and

I've asked the PSIRT Team and they confirmed that ISE is vulnerable.

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash

 

(Prime Infrastructure is vulnerable as well but is not yet mentioned in the advisory.  It will be added in an upcoming revision.)

 

 

 

New Member

Has a patch been released for

Has a patch been released for this vulnerability?

We are also running 1.2.0.899

New Member

Hello, we are running 1.2.0

Hello, we are running 1.2.0.899, too. Last look in the CCO shows me no new version with a bugfix. Last available patch is "ise-patchbundle-1.2.0.899-Auto13-124679"

It seems that this patch does not contain a bugfix.

Any help ?

Thx

 

New Member

Look like the fixed is in

Look like the fixed is in patch 1.2(0.912)

 

https://tools.cisco.com/bugsearch/bug/CSCur00532

507
Views
0
Helpful
4
Replies
CreatePlease to create content