Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cisco Flaw Opens Routers to Attack

Posted by CowboyNeal on from the right-where-it-hurts dept.

Jack writes "Cisco is suffering from a serious flaw in its router operating system, which might allow execution of remote code: 'Cisco has warned of a new flaw in its IOS router operating system which might be used by attackers to launch denial of service attacks or take over IOS-based devices. The flaw causes to buffer overflow due to incorrect handling of user authentication credentials.'"

2 of 109 comments (clear)

  1. Best Practices 101 by b0r1s · · Score: 3, Insightful

    It's been pretty standard to ACL off authentication methods from unknown or untrusted networks for some time.

    If you can only auth from a known network, then an overrun in that auth process still requires access to a restricted location, which will stop 99% of attacks (which are usually automated these days).

    --
    Mooniacs for iOS and Android
  2. Re:The Cisco Advisory by bladesjester · · Score: 3, Insightful

    You'd be amazed at the things that you'll screw up on code-wise during a crunch period when you've been up for days on end trying to meet the deadlines that the pointy-hairs have set for you.

    We're still human in theory at least, so mistakes will happen and in a piece of software that's *that* big, it's really easy to miss them.

    --
    Everything I need to know I learned by killing smart people and eating their brains.