Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
696
Views
0
Helpful
1
Replies

TCP Split Handshake Connection Security Bypass Vulnerability - Should I be concerned?

MATTHEW WADE
Level 1
Level 1

‎04-14-2011 11:04 AM

What gives with this latest finding?

Labels:
0 Helpful
1 Reply 1

praprama
Cisco Employee
Cisco Employee

‎04-15-2011 07:31 AM

Hey Matt,

I guess you are referring to this article:

http://www.macrothink.org/journal/index.php/npa/article/viewFile/285/272

Following sometime of testing, we have not been able to re-produce the behavior as mentioned. Hence, we can be pretty sure that ASAs and Cisco IPSs are not affected by this vulnerability. You should be able to see details at:

http://blogs.cisco.com/security/cisco-investigation-for-tcp-split-handshake-issue-reported-by-nss/

http://tools.cisco.com/security/center/viewAlert.x?alertId=22462

Hope this helps!!

Regards,

Prapanch

0 Helpful
Customers Also Viewed These Support Documents