I already need to make a correction. =) Now all three bugs are accessible from customer CCO accounts.
Previously, they said: ========================= CSCsj50374 Bug Details ARP requests could cause broadcast loop on WLCs Symptom: A broadcast ARP frame may be seen to be forwarded back and forth at a very high rate between two or more WLCs in a mobility group, resulting in a "broadcast storm". Conditions: Multiple WLCs in a mobility group, with "config network arpunicast enable" in effect. Workaround: Configure "config network arpunicast disable". ========================= CSCsj69233 Bug Details Information contained within bug ID CSCsj69233 is only available to Cisco employees. It is our policy to make all externally-facing bugs available in Bug Toolkit so the system administrators have been automatically alerted to the problem. By choosing to save this bug, you may be notified when the decision to make this bug available to you has been made. Note: Some product enhancement requests and documentation error bugs may not be available in Bug Toolkit." ========================= CSCsj70841 Bug Details Information contained within bug ID CSCsj70841 is only available to Cisco employees. It is our policy to make all externally-facing bugs available in Bug Toolkit so the system administrators have been automatically alerted to the problem. By choosing to save this bug, you may be notified when the decision to make this bug available to you has been made. Note: Some product enhancement requests and documentation error bugs may not be available in Bug Toolkit. ========================= Now they all point to the advisory. Regards, Frank -----Original Message----- From: Frank Bulk [mailto:[EMAIL PROTECTED] Sent: Tuesday, July 24, 2007 11:50 AM To: [email protected] Subject: [WIRELESS-LAN] Cisco posts security advisory regarding ARP Storm Vulnerabilities http://www.cisco.com/warp/public/707/cisco-sa-20070724-arp.shtml It appears that there was an issue with ARP handling on some of devices in Cisco's distributed platform, which the iPhone, because it is a truly mobile device roaming across multiple networks and controllers, triggered. There are three bugs that this advisory discusses, only one of which is accessible from a customer CCO account. The good news is that code for the 4.1 train is available now and software for 4.0 and 3.2 by July 27. Regards, Frank ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
