Cisco flaw opens networks to attacks
Results 1 to 6 of 6

Thread: Cisco flaw opens networks to attacks

  1. #1
    AO French Antique News Whore
    Join Date
    Aug 2001
    Posts
    2,126

    Cisco flaw opens networks to attacks

    Cisco has warned in a security advisory that some networks with its routers could be vulnerable to denial-of-service attacks.
    The problem is in the processing of packets sent to a Cisco router that has been configured for the Open Shortest Path First (OSPF) protocol, the company said in a security advisory released Wednesday. If the router receives a malformed packet, it will take a while to reset. Attackers could flood networks with packets that cause routers to constantly reboot. The flaw is limited to versions 12.0S, 12.2 and 12.3 of Cisco's Internetwork Operating System routing software.

    Jon Oltsik, a network security analyst at the Enterprise Strategy Group, said the vulnerable versions and configuration are in common use and that the effects of a successful attack could be devastating to an enterprise.

    "If a hacker puts a certain request to the main router, then it could shut down the whole network," Oltsik said. But he believes that in practice, the vulnerability requires both inside knowledge and Cisco expertise, which should limit the number of attacks. The most likely threat will come from former staff with a grievance, he said.

    "It's not like a Microsoft vulnerability that anyone with Internet access can exploit. You need specific knowledge to exploit this. An attack is most likely to come from a rogue employee who knows the configuration of the company's Cisco routers," Oltsik said.

    Cisco said Thursday that it's unaware of any exploitations of the vulnerability.

    Cisco has provided a patch for the security flaw and has also provided several workarounds for the problem, such as using OSPF authentication as a workaround. It is also recommending that customers update their routers with a free software patch, available by e-mailing its support center at tac@cisco.com. The full Cisco advisory has been posted to its Web site.
    Source : http://zdnet.com.com/2100-1105_2-5316500.html
    -Simon \"SDK\"

  2. #2
    AO Ancient: Team Leader
    Join Date
    Oct 2002
    Posts
    5,197
    Shouldn't that be "closes networks to attacks"?
    Don\'t SYN us.... We\'ll SYN you.....
    \"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides

  3. #3
    Trumpet-Eared Gentoo Freak
    Join Date
    Jan 2003
    Posts
    992
    Come and check out our wargame-site @ http://www.rootcontest.org
    We chat @ irc.smdc-network.org #lobby

  4. #4
    AO French Antique News Whore
    Join Date
    Aug 2001
    Posts
    2,126
    My mistake hobbdebub! Sorry!
    -Simon \"SDK\"

  5. #5
    Senior Member
    Join Date
    Jun 2004
    Posts
    112
    Thats all right SDK. No harm done at all.

  6. #6
    Junior Member
    Join Date
    Aug 2004
    Posts
    15
    interesting,but it must be played by an expert

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •