On Sun, Sep 05, 2004 at 08:48:46AM +0200, Jan Muenther wrote: > just a simple question, but have you talked to Wind River or whoever does > vxWorks these days...?
Yes. There's no difference between regular support requests and security issues. They demand a valid VxWorks license number before having a look at the content of mails. But as I am only using devices that embed VxWorks, I've none and this is a no go. Since Brocade has a fix, maybe VxWorks did it silently at the first place. BTW Brocade has confirmed that any switch running pre-3.2 code is vulnerable, including models 3800, 3200 and 2800. Latest models will all run Linux instead. -- __ /*- Frank DENIS (Jedi/Sector One) <j at 42-Networks.Com> -*\ __ \ '/ <a href="http://www.PureFTPd.Org/";> Secure FTP Server </a> \' / \/ <a href="http://www.Jedi.Claranet.Fr/";> Misc. free software </a> \/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
