When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

Cisco Routers Affected by Security Problems

Cisco is warning of three vulnerabilities within its Internet Operating System software; the company has published workarounds and issued an updated version of the software. A denial-of-service attack, running arbitrary code and a device having to reload its OS are all possible on an affected switch router. The latter means a secondary, sustained DOS condition could be caused since packets won't go through the device. "Because devices running IOS may transmit traffic for a number of other networks, the secondary impacts of a denial of service may be severe," CERT said.

The three problems are:

  • TCP packet problem: A memory leak in certain versions of IOS could lead to a DOS attack, according to an advisory from the U.S. Computer Emergency Readiness Team.
  • IPv6 router header vulnerability: IOS can fail to properly process IPv6 (Internet Protocol version 6) packets with specially crafted routing heads, which could allow a DOS attack or the running of arbitrary code. IPv6 is a set of specifications that enables more IP addresses to be available on the Internet.
  • Crafted IP option vulnerability: This is a bug concerning how IOS processes IPv4 packets with a specially crafted IP option, CERT said. It could also enable a DOS attack or the running of arbitrary code.
News source:
PC World
Report a problem with article
Next Article

Inside the Windows Vista Kernel: Part 1

Previous Article

UT2007 Renamed To Unreal Tournament III

Join the conversation!

Login or Sign Up to read and post a comment.

1 Comment - Add comment