Slashdot Mirror

← Back to Stories (view on slashdot.org)

Malformed Packet Causes Cisco Router DoS

Posted by CmdrTaco on from the oops-they-did-it-again dept.

MoreBeer writes "Patch 'em if you've got 'em... Cisco Security Advisory: Cisco IOS Malformed OSPF Packet Causes Reload states that a malformed OSPF packet can cause a router 'reload' (reboot). Vulnerable IOS versions include 12.0S, 12.2, and 12.3 ... If you're not screening OSPF at your perimeter and using OSPF Authentication, now would be a GREAT time to start."

5 of 124 comments (clear)

  1. Yeah, I better get things patched by Anonymous Coward · · Score: 5, Funny

    Before someone has a chance to reset my r

    1. Re:Yeah, I better get things patched by rwiedower · · Score: 5, Funny

      ...outer. Whew. It's a good thing that man-in-the-middle-attack is working like a charm now.

  2. Bleh by Rosco+P.+Coltrane · · Score: 5, Funny

    Patch 'em if you've got 'em...

    What a crock of shit. Everybody knows Cisco boxes are no route to host

    --
    "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
  3. I admit by tomee · · Score: 5, Informative

    I had to look it up. OSPF

  4. Only IOS devices RUNNING OSPF are vulnerable by w1r3sp33d · · Score: 5, Informative
    That rules out most routers, and most switches. If you have followed best practices in your deployment, no internet edge device should be running OSPF so that shouldn't be a consideration, basically it should boil down to who within the company is trying to crash your routers?

    What a great time to post a link to www.routergod.com! Here are the two parts of Seven of Nine's lecture on OSPF:

    http://www.routergod.com/sevenofnine/

    http://www.routergod.com/sevenofnine/ospf_part_2.h tml