Black Hat Flaw Eludes Cisco

Cisco says it can't find the PIX firewall vulnerability disclosed at Black Hat

Don't you just hate it when you finally tell someone about that computer bug you've been experiencing -- and all of a sudden, it stops happening?

That seems to be the case with a firewall vulnerability discussed at the recent Black Hat Inc. conference. Cisco Systems Inc. (Nasdaq: CSCO) says it's yet to confirm the problem, and not for lack of trying.

In a security response issued yesterday, Cisco says its Product Security Incident Response Team (PSIRT) "has been unable to reproduce this issue."

This doesn't mean the story is over, though. A Cisco spokesman says the team will continue the hunt and publish details "as they are available."

On Aug. 2, researcher Hendrik Scholz disclosed a vulnerability in Cisco's PIX firewall at the end of a presentation entitled "SIP Stack Fingerprinting and Stack Difference Attacks." He didn't divulge details of the problem or how it might be exploited. (See Cisco & Black Hat Meet Again.)

Scholz, who works for Freenet Cityline GmbH, a unit of AG , has been helping Cisco's PSIRT investigate the vulnerability.

— Craig Matsumoto, Senior Editor, Light Reading

Recommended Reading: