Flaw in Cisco
Posted: Sat Jul 19, 2003 10:14 pm
Interesting but short article:
http://www.chron.com/cs/CDA/ssistory.mpl/b...usiness/2001845
Hackers' attacks on Cisco failing
Associated Press
SAN JOSE, Calif. -- Hackers made some attempts Friday to bring down network routing gear by exploiting a flaw in Cisco Systems equipment that carries the bulk of the world's Internet traffic.
There were no reports of outages or slowdowns, suggesting network administrators heeded Cisco's warnings about the flaw and implemented workarounds or installed the free patch.
Cisco discovered the flaw through internal testing.
Security researchers, however, warned that the exploit -- a snippet of software code that takes advantage of the flaw -- has been available for a short time and hackers may just be trying it out before attempting major attacks.
I think this flaw has to do with the problem I had with the looping, but I'm not sure. Hard to tell until the whole net get's taken down. Then admins will apply the patch.
Here's some more coverage about this same vulnebility:
Cisco Routers Vulnerable to DoS Attack
Jul 18, 2003 -- (WEB HOST INDUSTRY REVIEW) -- Cisco Systems (cisco.com) revealed on Thursday that Cisco routers and switches running Cisco IOS software and configured to process Internet Protocol version 4 (IPv4) packets are vulnerable to Denial of Service (DoS) attacks.
Cisco IOS versions 11.x and 12.x prior to 12.3 are affected by the vulnerability. Cisco devices that do not run Cisco IOS software are not affected.
Devices running only IP version 6 (IPv6) are also not affected.
Cisco has issued an advisory and made software available, free of charge, to correct the problem.
According to reports, the situation has worsened due to the release of the exploit code on a full disclosure mailing list. The concern now is over how much damage can be done before system administrators can update their router software and counteract the vulnerability.
In an update posted today in its advisory, Cisco confirmed that this situation has been brought to its attention.
“Since the initial posting of this document, the Cisco PSIRT has been made aware of public announcements of the vulnerabilities described in this advisory. Cisco PSIRT is aware that the exploit for this vulnerability has been published on a public mailing list.”
http://thewhir.com/marketwatch/cis071803.cfm
the thing is, my net has been very slow lately. I thought it was this server because it seems all the sites I visit on on here, but some other sites are also slow I noticed. I'll wait a bit and see, and if it continues I'll contact my isp about it. Probably just a coincidence though.
Archived topic from Iceteks, old topic ID:1115, old post ID:9741
http://www.chron.com/cs/CDA/ssistory.mpl/b...usiness/2001845
Hackers' attacks on Cisco failing
Associated Press
SAN JOSE, Calif. -- Hackers made some attempts Friday to bring down network routing gear by exploiting a flaw in Cisco Systems equipment that carries the bulk of the world's Internet traffic.
There were no reports of outages or slowdowns, suggesting network administrators heeded Cisco's warnings about the flaw and implemented workarounds or installed the free patch.
Cisco discovered the flaw through internal testing.
Security researchers, however, warned that the exploit -- a snippet of software code that takes advantage of the flaw -- has been available for a short time and hackers may just be trying it out before attempting major attacks.
I think this flaw has to do with the problem I had with the looping, but I'm not sure. Hard to tell until the whole net get's taken down. Then admins will apply the patch.
Here's some more coverage about this same vulnebility:
Cisco Routers Vulnerable to DoS Attack
Jul 18, 2003 -- (WEB HOST INDUSTRY REVIEW) -- Cisco Systems (cisco.com) revealed on Thursday that Cisco routers and switches running Cisco IOS software and configured to process Internet Protocol version 4 (IPv4) packets are vulnerable to Denial of Service (DoS) attacks.
Cisco IOS versions 11.x and 12.x prior to 12.3 are affected by the vulnerability. Cisco devices that do not run Cisco IOS software are not affected.
Devices running only IP version 6 (IPv6) are also not affected.
Cisco has issued an advisory and made software available, free of charge, to correct the problem.
According to reports, the situation has worsened due to the release of the exploit code on a full disclosure mailing list. The concern now is over how much damage can be done before system administrators can update their router software and counteract the vulnerability.
In an update posted today in its advisory, Cisco confirmed that this situation has been brought to its attention.
“Since the initial posting of this document, the Cisco PSIRT has been made aware of public announcements of the vulnerabilities described in this advisory. Cisco PSIRT is aware that the exploit for this vulnerability has been published on a public mailing list.”
http://thewhir.com/marketwatch/cis071803.cfm
the thing is, my net has been very slow lately. I thought it was this server because it seems all the sites I visit on on here, but some other sites are also slow I noticed. I'll wait a bit and see, and if it continues I'll contact my isp about it. Probably just a coincidence though.
Archived topic from Iceteks, old topic ID:1115, old post ID:9741
