|
|
Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty
Solution: Nortel has acknowledged this issue and has resolved it in builds 8.3.24.5, 9.0.41.5 and 10.0.25.1. Nortel customers with support contracts are advised to obtian the fix from http://www.nortelnetworks.com/cs or by contacting Alteon support tech at 1-800-4-Nortel and use Express Routing Code 343. Nortel Customers without support contracts are advised to email Alteon support <alteon-support@nortelnetworks.com> with the Subject: Fix for BugTraq Vulnerability #3964. In the body of the message, ensure that the switch type(s) and current code version(s) in use are specified. In addition there is a fix pending for the next build of 8.0 and 8.1 (8.0.64.x, 8.1.35.x). However, there is no fix planned for older versions. |
|
Privacy Statement |