We have a Cisco ISA570 running the latest firmware version of 1.2.19.
However, after running several Heartbleed tests, we found that it is vulnerable to this threat. It's not even listed as an affected product on the Cisco Security Advisory page.
We had to disable SSL VPN services as a workaround, but that disables remote access for our users which isn't an acceptable option for long term.
What do we need to do to get our ISA570 updated to fix this active threat?
Thanks in advanced!
I've attempted to open a ticket with Cisco; however, they said that they are aware of the issue. They are attempting to determine if the ISA500s are actually vulnerable.
It is about time Cisco is closing that issue by providing us with a firmware update ... I will think of this experience when buying the next smb-hardware.
Yep, and the release notes didn't take ages to come out: