Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Cisco not honoring update promises?

from [Michael Scheidell] Network Security [Permanent Link]
Subject: RE: Cisco not honoring update promises?
Date: Tue, 19 Dec 2006 17:54:59 -0500 
 


-----Original Message-----
From: rsmoak@cisco.com [mailto:rsmoak@cisco.com] 
Sent: Monday, December 18, 2006 12:53 PM
To: bugtraq@securityfocus.com
Subject: Re: Cisco not honoring update promises?

Michael,

This message came to my attention this morning via your 
posting to bugtraq. 

Apologies for the trouble you are having.


Cisco has come across with the requested firmware.

Thanks Russell.

If cisco needs copies of emails from tac about this issue I will save
them.

Russell also suggested that if anyone had problems getting tac to send
security updates that they call the phone number and/or send email to
psirt to escalate it.


Cisco gives specific guidance in each of our public security 
advisories regarding software upgrades.   If the bug that you 
are trying to obtain an upgrade for is documented in a 
security advisory indicating that free software will be made 
available to resolve the issue, Cisco will of course honor 
that request.


Seems that the problem is not with Cisco's policies, but some of the
(offshore?) tech support people answering the tac@cisco.com email still
don't know Cisco's policies.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  MkPortal Urlobox Cross Site Request Forgery, info
Next by Date:  [Full-disclosure] ZDI-06-051: Mozilla Firefox SVG Processing Remote Code Execution Vulnerability, zdi-disclosures
Previous by Thread:  Re: Cisco not honoring update promises?, rsmoak
Next by Thread:  HyperVM Cross-Site Scripting, Advisory
Indexes:  [Date] [Thread] [Top] [All Lists]