*SNIP*
Cisco portal password security compromised
By John Leyden
Published Wednesday 3rd August 2005 15:37 GMT
SOURCE:
http://www.theregister.co.uk/2005/08...security_flap/
A security breach involving Cisco's customer portal has forced the giant to
reset passwords as a precaution. As a result, users visiting Cisco
Connection Online on Wednesday were obliged to reauthenticate themselves.
In a statement Cisco said: "It has been brought to our attention that there
is an issue in a Cisco.com search tool that could expose passwords for
registered users. As a result, to protect our users, we're taking the
proactive step of resetting Cisco.com passwords. Needless to say we're
investigating the incident which does not appear to be due to a weakness in
our security products and technologies or with our network infrastructure."
Users are been advised to email an automated service to get their passwords
reset but some Reg readers who notified us about the issue report snags in
re-establishing a valid log-in. One network reseller, reports the fallout
from the security breach is causing significant inconvenience.
.... *END SNIP* ....
FROM CISCO.COM AT:
SOURCE: http://www.cisco.com/security/
*SNIP*
SAN JOSE, Calif., August 3, 2005:
Cisco Systems, Inc. was made aware of a vulnerability of a search tool on
Cisco.com that could expose passwords for registered users.
Registered users of Cisco.com consist of employees, customers, partners, and
other third-party users.
*END SNIP*
MORE STROY LINKS:
Cisco portal password security compromised
Precautionary reset fails to run smoothly
http://www.theregister.co.uk/2005/08...security_flap/
Cisco security flap leaves millions scrambling for help
http://www.theregister.co.uk/2005/08...sword_backlog/
Cisco portal password security compromised
By John Leyden
Published Wednesday 3rd August 2005 15:37 GMT
SOURCE:
http://www.theregister.co.uk/2005/08...security_flap/
A security breach involving Cisco's customer portal has forced the giant to
reset passwords as a precaution. As a result, users visiting Cisco
Connection Online on Wednesday were obliged to reauthenticate themselves.
In a statement Cisco said: "It has been brought to our attention that there
is an issue in a Cisco.com search tool that could expose passwords for
registered users. As a result, to protect our users, we're taking the
proactive step of resetting Cisco.com passwords. Needless to say we're
investigating the incident which does not appear to be due to a weakness in
our security products and technologies or with our network infrastructure."
Users are been advised to email an automated service to get their passwords
reset but some Reg readers who notified us about the issue report snags in
re-establishing a valid log-in. One network reseller, reports the fallout
from the security breach is causing significant inconvenience.
.... *END SNIP* ....
FROM CISCO.COM AT:
SOURCE: http://www.cisco.com/security/
*SNIP*
SAN JOSE, Calif., August 3, 2005:
Cisco Systems, Inc. was made aware of a vulnerability of a search tool on
Cisco.com that could expose passwords for registered users.
Registered users of Cisco.com consist of employees, customers, partners, and
other third-party users.
*END SNIP*
MORE STROY LINKS:
Cisco portal password security compromised
Precautionary reset fails to run smoothly
http://www.theregister.co.uk/2005/08...security_flap/
Cisco security flap leaves millions scrambling for help
http://www.theregister.co.uk/2005/08...sword_backlog/
Comment