cisco announces WIDESPREAD security exploit

Discussion in 'OT Technology' started by willis, Jul 17, 2003.

  1. willis

    willis on the road again

    Joined:
    Aug 28, 2001
    Messages:
    602
    Likes Received:
    0
    Location:
    en route
    which can be used in a dos attack.

    it effects -every- piece of equipment cisco has put out unless...

    1) it doesn't run ios
    2) it explicitly handles ipv6 traffic only

    http://www.cert.org/advisories/CA-2003-15.html

    sweet, eh? looks like it's going to be a fun filled weekend of upgrading ios's-es-es-ess

    :mad:
     
  2. ace3

    ace3 mouthify my wang.

    Joined:
    May 4, 2001
    Messages:
    122,602
    Likes Received:
    7
    Location:
    Omaha NebrASSka Posts: 15
    muthafuckin' WERD.


    :fawk:
     
  3. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
  4. CyberBullets

    CyberBullets I reach to the sky, and call out your name. If I c

    Joined:
    Nov 13, 2001
    Messages:
    11,865
    Likes Received:
    0
    Location:
    BC, Canada/Stockholm, Sweden
    damn.

    has anyone info on their stock today? how did it do with the release of that?
     
  5. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
    only for these protocols:

    53 (SWIPE), 55 (IP Mobility), 77 (Sun ND), or 103 (Protocol Independent Multicast - PIM)
     
  6. willis

    willis on the road again

    Joined:
    Aug 28, 2001
    Messages:
    602
    Likes Received:
    0
    Location:
    en route
    i'm not sure what you mean. it stops accepting packets, period, if this security hole is exploited.
     
  7. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
    Which means that if you don't have your router configured to even process these protocols, then it would just drop the traffic.

    I could be reading it wrong though... or not know enuf about the shit...
     
  8. willis

    willis on the road again

    Joined:
    Aug 28, 2001
    Messages:
    602
    Likes Received:
    0
    Location:
    en route
    my reply before this edit was wrong.
     
    Last edited: Jul 18, 2003
  9. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
    well, good news for us who are just running tcp/ip :wiggle:
     
  10. willis

    willis on the road again

    Joined:
    Aug 28, 2001
    Messages:
    602
    Likes Received:
    0
    Location:
    en route
    unfortunately they are just listing the ip protocol types that can trigger this event. you are still vulnerable unless you are running ios 12.3, ipv6 only, have no ios, or it's a pim enabled interface.
     
  11. Rob

    Rob OT Supporter

    Joined:
    Jul 6, 2002
    Messages:
    88,612
    Likes Received:
    36
    Location:
    Atlanta, GA
    Somebody in our IT department lost our Cisco contract info, no new IOS for us. :doh: Don't DOS us quite yet. :big grin:
     
  12. SLED

    SLED build an idiot proof device and someone else will

    Joined:
    Sep 20, 2001
    Messages:
    28,118
    Likes Received:
    0
    Location:
    AZ, like a bauce!
    :eek3: :x:
     
  13. CyberBullets

    CyberBullets I reach to the sky, and call out your name. If I c

    Joined:
    Nov 13, 2001
    Messages:
    11,865
    Likes Received:
    0
    Location:
    BC, Canada/Stockholm, Sweden
    is that "somebody" you? :x: :wiggle:
     
  14. DatacomGuy

    DatacomGuy is moving to Canada

    Joined:
    Oct 14, 2002
    Messages:
    16,546
    Likes Received:
    0
    Location:
    Tampa, FL
    DAMN INTERNS. :rofl::rofl::rofl:
     
  15. Section8

    Section8 .

    Joined:
    May 29, 2001
    Messages:
    99,761
    Likes Received:
    0
    Location:
    Golden, CO
    There are other 12.2 versions that aren't affected either. Very few GD and T train versions though. Fun.

    Back to scheduling outages I go...

    <--- Balzz posting since Mikel's acct is banned.
     

Share This Page