Comments on: Cisco & Microsoft Patch TCP Stack DoS Exploit http://www.darknet.org.uk/2009/09/cisco-microsoft-patch-tcp-stack-dos-exploit/ Ethical Hacking, Penetration Testing & Computer Security Tue, 14 Feb 2012 00:17:07 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Jeffrey http://www.darknet.org.uk/2009/09/cisco-microsoft-patch-tcp-stack-dos-exploit/#comment-159018 Jeffrey Wed, 16 Sep 2009 21:27:33 +0000 http://www.darknet.org.uk/?p=2095#comment-159018 <<< You wouldn <<< You wouldn

]]> By: Morgan Storey http://www.darknet.org.uk/2009/09/cisco-microsoft-patch-tcp-stack-dos-exploit/#comment-158978 Morgan Storey Mon, 14 Sep 2009 02:36:40 +0000 http://www.darknet.org.uk/?p=2095#comment-158978 @Jeffrey: You wouldn't happen to be an employee of eEye would you, that whole post looks very marketing-esque. I heard some companies are now hiring blogspammers, please take it elsewhere people here are smart enough to make up their own minds. eEye has from what I have seen a small and very Niche market, most of the features you are touting there are on 90% of AV vendors out there, HIPS/HIDS is in McAfee, Sophos, Trend, iirc it can even be enabled in Symantecs end point. Back on topic, it is interesting that the Linux Kernel devs have advised they won't be patching as yet, it is a bit of a worry, yes it is only a DOS, but this is like the Apache bug of similar ilk, if you don't patch it or at least make an attempt you are being shown up, and showing that security is not that big a concern. @Jeffrey: You wouldn’t happen to be an employee of eEye would you, that whole post looks very marketing-esque. I heard some companies are now hiring blogspammers, please take it elsewhere people here are smart enough to make up their own minds. eEye has from what I have seen a small and very Niche market, most of the features you are touting there are on 90% of AV vendors out there, HIPS/HIDS is in McAfee, Sophos, Trend, iirc it can even be enabled in Symantecs end point.

Back on topic, it is interesting that the Linux Kernel devs have advised they won’t be patching as yet, it is a bit of a worry, yes it is only a DOS, but this is like the Apache bug of similar ilk, if you don’t patch it or at least make an attempt you are being shown up, and showing that security is not that big a concern.

]]> By: Jeffrey http://www.darknet.org.uk/2009/09/cisco-microsoft-patch-tcp-stack-dos-exploit/#comment-158953 Jeffrey Fri, 11 Sep 2009 07:23:13 +0000 http://www.darknet.org.uk/?p=2095#comment-158953 <<< Even then, a patch is released but how many people actually apply it? Probably not many (right away). Most IT departments, if they are smart, will have to test it. I have finally been able to provoke my IT department to change from the Symantec Endpoint Protection suite they are using now to eEye Digital Security's Blink Professional endpoint protection suite for our desktop systems and Blink Server Edition on our servers. It allows us to not have to "panic patch" (as everyone calls it). Blink is already protecting from the vulnerability which gives us time to test and roll out our patches. I think the thing that sold the product even more, was the fact that each Blink node has Retina built into it which scans each host we have it on and then transmits its data back to eEye's REM management counsel. I havev been using the Personal Edition of Blink on my home systems and have been completely happy with it. It is nice to see companies, like eEye, that drive to protect their users from vulnerabilities. Blink Personal Edition is free for one year if anyone wants to try it. I have created a forum post (in eEye's forums) for new users of Blink trying to explain why it is so unique. http://forums.eeye.com/forums/t/998.aspx?PageIndex=1 < << Even then, a patch is released but how many people actually apply it?

Probably not many (right away). Most IT departments, if they are smart, will have to test it. I have finally been able to provoke my IT department to change from the Symantec Endpoint Protection suite they are using now to eEye Digital Security's Blink Professional endpoint protection suite for our desktop systems and Blink Server Edition on our servers. It allows us to not have to "panic patch" (as everyone calls it).
Blink is already protecting from the vulnerability which gives us time to test and roll out our patches. I think the thing that sold the product even more, was the fact that each Blink node has Retina built into it which scans each host we have it on and then transmits its data back to eEye's REM management counsel.
I havev been using the Personal Edition of Blink on my home systems and have been completely happy with it. It is nice to see companies, like eEye, that drive to protect their users from vulnerabilities.

Blink Personal Edition is free for one year if anyone wants to try it. I have created a forum post (in eEye's forums) for new users of Blink trying to explain why it is so unique.

http://forums.eeye.com/forums/t/998.aspx?PageIndex=1

]]> By: cbrp1r8 http://www.darknet.org.uk/2009/09/cisco-microsoft-patch-tcp-stack-dos-exploit/#comment-158937 cbrp1r8 Wed, 09 Sep 2009 19:33:34 +0000 http://www.darknet.org.uk/?p=2095#comment-158937 Even then, a patch is released but how many people actually apply it? Cisco equipment is well known for being hard to manage/patch so I Even then, a patch is released but how many people actually apply it? Cisco equipment is well known for being hard to manage/patch so I

]]>