Friday, September 11, 2009

Microsoft and Cisco Fix TCP Stack Vulnerability

--Microsoft and Cisco Fix TCP Stack Vulnerability

Microsoft and Cisco have issued updates to address a vulnerability
in the transmission control protocol (TCP) that could be exploited to
cause denial-of-service conditions. The flaw was discovered in 2005
and made public last year. Microsoft's fix was part of its scheduled
monthly security update for September. Cisco's update addresses the
problem in several of the company's products. Other companies whose
products are affected by the flaw are beginning to issue advisories
as well. What is particularly concerning about this vulnerability
is that it requires a relatively small amount of malicious traffic
to exploit.

No comments: