CERT home
vulnerabilities & fixesevaluations & practicesresearch & analysistraining & education
homesearchFAQsite indexcontact
Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information
 

 View Notes By
Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric

Cisco Systems, Inc. Information for VU#435052

Date Notified12/09/2008
Date Modified09/28/2009 02:58:21 PM
Status SummaryNot Vulnerable

Vendor Statement

The Cisco PSIRT has been investigating and has not found any vulnerable products. If we determine that any of our products are vulnerable, information will be available at: http://www.cisco.com/go/psirt/. Please direct any questions to psirt@cisco.com.

Addendum

Access control lists can be configured to mitigate this vulnerability. The below ACLs limit access allow a proxy server to only connect make outbound connections to TCP port 80.

    access-list 111 permit tcp [ip address of proxy] any eq 80
    access-list 112 permit tcp any any gt 1023 established

    If you have feedback, comments, or additional information about this vulnerability, please send us email.
     

Copyright 2012 Carnegie Mellon University