|
The fact that it is obsolete shouldn't render it vulnerable. A quick
search on vulnerabilities on the device show nothing of import
recently. If it was current on patches when it became obsolete, then it
should be OK. If you hang on to it, then a quick search every couple of
weeks should keep you covered. Also, subscribing to a list of known
vulnerabilities would be a good idea. The SANS institute has several.
Searching the metasploit site would also uncover an exploit should one
surface for the device.
Pete Helgren
www.petesworkshop.com
GIAC Secure Software Programmer-Java
On 3/18/2013 6:59 AM, rob@xxxxxxxxx wrote:
We get regular reports of our internal, and our external, network fromis
Qualys. Also some benevolent hacking is done. Areas of concern are
ranked in layers of severity with 5 being the area of highest concern and
1 being the area of lowest concern. The one issue we have at a level 5
only because the software is obsolete and is no longer issued updates.the
<snip>
THREAT:
The Cisco VPN 3000 Series provides remote access deployments for IP
Security (IPsec) and Secure Sockets Layer (SSL) VPN connectivity.
Technical support ended on 31st August 2012. Support services for
product are unavailable, and the product is obsolete.VPN
IMPACT:
The system is at high risk of being exposed to security
vulnerabilities. Since the vendor no longer provides updates, obsolete
software is more vulnerable to attacks.
SOLUTION:
Cisco recommends migrating to the Cisco ASA 5500 Series SSL/IPsec
Edition. Information about this product can be found at Cisco ASA.think
COMPLIANCE:
Not Applicable
EXPLOITABILITY:
There is no exploitability information for this vulnerability.
ASSOCIATED MALWARE:
There is no malware information for this vulnerability.
RESULTS:
OS obtained: Cisco VPN 3000 Concentrator
</snip>
This has been on the report for awhile so apparently my boss doesn't
it's really all that great a priority. Or perhaps it's asking for budgetmonths)?
money the same quarter that manufacturing tries to load up is unlucky.
Would you or your boss?
Would you or your boss have a concern if that was about some level of IBM
i that you were running that is now obsolete (or will be in a few
Rob Berendt
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.