• On BNET: 3 worst things about the iPhone 3G S

August 19, 2004 9:52 AM PDT

Cisco flaw opens networks to attacks

By Ingrid Marson

  • Post a comment
Related Stories

Juniper engineers depart for start-up

 August 18, 2004

Cisco shares fall on weak spending outlook

 August 11, 2004

Security's disorderly mess

 August 11, 2004

Healthy sales lift Cisco's profit

 August 10, 2004

Cisco fixes critical protocol flaw

 April 21, 2004

Cisco plans network software overhaul

 April 21, 2004
Cisco has warned in a security advisory that some networks with its routers could be vulnerable to denial-of-service attacks.

The problem is in the processing of packets sent to a Cisco router that has been configured for the Open Shortest Path First (OSPF) protocol, the company said in a security advisory released Wednesday. If the router receives a malformed packet, it will take a while to reset. Attackers could flood networks with packets that cause routers to constantly reboot. The flaw is limited to versions 12.0S, 12.2 and 12.3 of Cisco's Internetwork Operating System routing software.

Jon Oltsik, a network security analyst at the Enterprise Strategy Group, said the vulnerable versions and configuration are in common use and that the effects of a successful attack could be devastating to an enterprise.


News.blog
Broadband
Our reporters' take on what's
happening in broadband.

"If a hacker puts a certain request to the main router, then it could shut down the whole network," Oltsik said. But he believes that in practice, the vulnerability requires both inside knowledge and Cisco expertise, which should limit the number of attacks. The most likely threat will come from former staff with a grievance, he said.

"It's not like a Microsoft vulnerability that anyone with Internet access can exploit. You need specific knowledge to exploit this. An attack is most likely to come from a rogue employee who knows the configuration of the company's Cisco routers," Oltsik said.

Cisco said Thursday that it's unaware of any exploitations of the vulnerability.

Cisco has provided a patch for the security flaw and has also provided several workarounds for the problem, such as using OSPF authentication as a workaround. It is also recommending that customers update their routers with a free software patch, available by e-mailing its support center at tac@cisco.com. The full Cisco advisory has been posted to its Web site.

Ingrid Marson of ZDNet UK reported from London. CNET News.com's Marguerite Reardon contributed to this report.

See more CNET content tagged:
Cisco Systems Inc., Open Shortest Path First, packet, router, attack

advertisement

Latest tech news headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets

Market news, charts, SEC filings, and more

Related quotes

Cisco Systems (0.94%) 0.17 18.34
Dow Jones Industrials (-0.45%) -36.65 8,146.52
S&P 500 (-0.40%) -3.55 879.13
NASDAQ (0.20%) 3.48 1,756.03
CNET TECH (0.36%) 4.57 1,262.65
  Symbol Lookup
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET