Foundry Networks ServerIron TCP/IP Sequence Predictability Vulnerability

Solution:
Foundry has issued a response to the vulnerabilities descibed. That document is available at:
http://www.foundrynet.com/bugTraq.html
A firmware upgrade, 6.0.03 has been issued which remedies some of the problems presented, as well as adding the ability to run sshd on the machine.

A short term solution may be to add ACL's to prevent any machine, except for a trusted one, to connect to the switch. Another possible solution is to disable all services on the switch, and only administer it from its serial console.



 

Privacy Statement
Copyright 2010, SecurityFocus