Slashdot Mirror

← Back to Stories (view on slashdot.org)

Lenovo Discovers and Removes Backdoor In Networking Switches (bleepingcomputer.com)

Posted by msmash on from the fixing-things dept.

An anonymous reader writes: Lenovo engineers have discovered a backdoor in the firmware of RackSwitch and BladeCenter networking switches. The company released firmware updates last week. The Chinese company said it found the backdoor after an internal security audit of firmware for products added to its portfolio following the acquisitions of other companies. Lenovo says the backdoor affects only RackSwitch and BladeCenter switches running ENOS (Enterprise Network Operating System).

The backdoor was added to ENOS in 2004 when ENOS was maintained by Nortel's Blade Server Switch Business Unit (BSSBU). Lenovo claims Nortel appears to have authorized the addition of the backdoor "at the request of a BSSBU OEM customer." In a security advisory regarding this issue, Lenovo refers to the backdoor under the name of "HP backdoor." The backdoor code appears to have remained in the firmware even after Nortel spun BSSBU off in 2006 as BLADE Network Technologies (BNT). The backdoor also remained in the code even after IBM acquired BNT in 2010. Lenovo bought IBM's BNT portfolio in 2014.

4 of 42 comments (clear)

  1. Really? by GrumpySteen · · Score: 5, Insightful

    One customer asked for a backdoor and they added it to all their products, giving that customer access to all of their customers' systems? Who the hell would authorize that?

    1. Re:Really? by Anonymous Coward · · Score: 3, Insightful

      Why would a Canadian company have done something for the NSA that would have violated Canadian law? Do you people even think through your conspiracies?

  2. Re:Does HP own Nortel?t by Anonymous Coward · · Score: 5, Insightful

    Not an "enterprise" customer but a customer that embeds the switches in their own product or solution, hence the term OEM. Presumably HP requested the backdoor for some reason (ex. easier support, CIA request, etc) and Nortel complied.

    I guess it's pretty funny to name the backdoor after the requester. Allegedly.

  3. Re: Some FISA court has to stop the chinese by Lunix+Nutcase · · Score: 3, Insightful

    Neither the FISA court nor any court is involved in NSLs. That’s one of the major issues with them; the complete lack of any (even rubber-stamped) judicial oversight.