cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
625
Views
0
Helpful
2
Replies

cisco asa 5510 Patch OpenSSL to 0.9.8j or later

nfordhk
Level 1
Level 1

Our PCI scan found the following bug "Patch OpenSSL to 0.9.8j or later"

We have an ASA 5510 running 8.2(2) with the following ssl: ssl encryption rc4-sha1 aes128-sha1 aes256-sha1

Reviewing the 8.2x OpenSSL notes in the releases documentation it specifices it is using 0.9.8 but not which version.

Can someone recommend which version to upgrade to?

2 Replies 2

James Leinweber
Level 4
Level 4

Cisco is still evaluating this and hasn't released fixed code yet:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl

-- Jim Leinweber, WI State Lab of Hygiene

 

Our vulnerability states "Netscape/OpenSSL Cipher Forcing Bug" I don't see that listed.
 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Review Cisco Networking products for a $25 gift card