Reply to post: Re: .NET 4.0.30319

This page is currency unavailable... Travelex scrubs UK homepage, kills services, knackers other sites amid 'software virus' infection

Anonymous Coward
Anonymous Coward

Re: .NET 4.0.30319

Looking at the CVE's, are you looking for remotely exploitable with remote code execution or authentication bypass?

Many of the ASA vulnerabilities result in DoS or device reloads, but do not allow remote access or remote code execution (i.e. the equivalent of the BlueKeep vulnerability in 2019 or CredSSP in 2018).

While I'm not disputing these are vulnerabilities, they result in "fail closed" scenarios from a risk perspective versus the "fail open" vulnerabilities with RDP which makes your statements around Microsoft being more secure than Cisco difficult to justify.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020