Cisco Systems Inc. Not Affected

Notified:  July 21, 2004 Updated: September 03, 2004

Status

Not Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

CyberSafe Not Affected

Updated:  September 02, 2004

Status

Not Affected

Vendor Statement

The CyberSafe products listed below are not vulnerable. CyberSafe Challenger 5.2.8 (this is the same code used within CISCO IOS) TrustBroker 2.0, 2.1 ActiveTRUST 3.0, 4.0 TrustBroker Application Security SDK & Runtime Library 3.1.0 TrustBroker Secure Client 4.1.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

MIT Kerberos Development Team Affected

Updated:  September 02, 2004

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Please see MITKRB5-SA-2004-002.