In-Reply-To: <20011109091652.Y5665@securityfocus.com> Note that the exposure described was fixed by IBM, to the satisfaction of the Cambridge researchers, as mentioned on their web page at http://www.cl.cam.ac.uk/~rnc1/descrack/ under the heading "NEW: 5 FEB 2002". Also note that there were no reported attacks against a 4758 card using the method described in the article.
