Cisco IOS DHCP DoS vulnerability
Cisco IOS version 12.2S is found to be vulnerable to a DoS attack when DHCP server or relay agent is enabled. Cisco has a fix ready (see link below). There are also many workarounds for this vulnerability, such as disabling the DHCP service (no service dhcp), using QoS or using ACL to block potential attack. Please refer to the URL below for details.
Rumours about Windows SP2 vulnerabilities
Finjan software announced that they have found 10 vulnerabilities in Windows XP SP2 and they have notified Microsoft about these vulnerabilities.
If these claims are true, we might have to do a lot of patching on XP machines soon.
Handler on Duty
Jason Lam Email: jason /at/ networksec.org
Nov 11th 2004
1 decade ago