View previous topic :: View next topic |
Author |
Message |
roba Angelina's Man
Joined: 14 Apr 2002 Posts: 3240 Game Trophies: 2
Location: Prague, Czech Republic
|
Posted: Sun Jul 20, 2003 3:26 pm Post subject: stupid cisco... |
|
|
...and their buggy software. My internet connection was more than 12 hrs dead coz of newest cisco ios exploit . Hac[/url]kers killed both my ISPs frontier routers and even now, 15hrs after attack, only one router is online.... stupid cisco, stupid hackers.....
http://schema.mistral.cz/
exploit info
|
|
Back to top |
|
|
LeeBe UT Celebrity
Joined: 28 Apr 2002 Posts: 2170 Game Trophies: 2
Location: North East England
|
Posted: Sun Jul 20, 2003 3:42 pm Post subject: |
|
|
wow
are they being hacked? or are they patching their routers?
Cisco released a router software fix last thursday? I would have thought they would have it patched up by now?
_________________
|
|
Back to top |
|
|
roba Angelina's Man
Joined: 14 Apr 2002 Posts: 3240 Game Trophies: 2
Location: Prague, Czech Republic
|
Posted: Sun Jul 20, 2003 4:04 pm Post subject: |
|
|
No thats another exploit, Cisco had hmmm I think 3 exploits this week? They have installed all patches from Cisco but this exploit is new, it was released few hours after lastest cisco patch....
They said DoS attack killed both routers last night and they are still fixing it (only one router is working).
|
|
Back to top |
|
|
Zed UT Noobie
Joined: 14 Apr 2002 Posts: 2099 Game Trophies: 2
Location: Berkeley, CA
|
|
Back to top |
|
|
[BIG]-Iron_Maiden Post more Noob
Joined: 12 Aug 2003 Posts: 16
Location: North Italy
|
Posted: Tue Aug 12, 2003 7:59 am Post subject: |
|
|
Only for info, probably the bug in question is this :
--------------------------------------------
Cisco routers and switches running Cisco IOS software and configured
to process Internet Protocol version 4 (IPv4) packets are vulnerable
to a Denial of Service (DoS) attack. Multiple IPv4 packets with
specific protocol fields sent directly to the device may cause the
input interface to stop processing traffic once the input queue is
full. No authentication is required to process the inbound packet.
Processing of IPv4 packets is enabled by default. Devices running
only IP version 6 (IPv6) are not affected
--------------------------------------------
it can be fixed by applying a packet filter in the ingress on the interface that block the protocol used for the attack
_________________ ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ
Up The Irons !!
----------------------------------
www.bigut.too.it |
|
Back to top |
|
|
|