[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] taking their revenge @ cisco

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] taking their revenge @ cisco
From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Thu, 04 Aug 2005 15:01:06 -0400

It have nothing to do with a IOS at all. All the other SQL injection that happen in the world have nothing to do with Cisco IOS flaws. This is a pure case of the search function being open to SQL injection. Therefore it is a design/code problem in one of the three web-app tiers of the website.


Yeah .. but I guess their "Self Defending Network" well, um ...

DIDN'T.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- [Full-disclosure] Cisco Self Defending Network
  - From: Travis Good

References:
- RE: [Full-disclosure] taking their revenge @ cisco
  - From: Todd Towles

Prev by Date: RE: [Full-disclosure] taking their revenge @ cisco
Next by Date: RE: [Full-disclosure] taking their revenge @ cisco
Previous by thread: RE: [Full-disclosure] taking their revenge @ cisco
Next by thread: [Full-disclosure] Cisco Self Defending Network
Index(es):
- Date
- Thread