Version: 2008

May 31, 2005 11:00 AM PDT

Nortel patches flaw in VPNs

By Dan Ilett
Special to CNET News.com

  • 4 comments
Nortel Networks customers are being urged to upgrade their virtual private network routers, after a security research company found a serious vulnerability in them.

The denial-of-service vulnerability enables hackers to crash IPSec VPN machines using a specially designed UDP packet. NTA Monitor, the company that discovered the flaw, said it would withhold details of the vulnerability because it is so dangerous.

"We believe this is a serious vulnerability," Roy Hills, technical director of NTA Monitor said. "It's possible to identify Nortel VPN routers using UDP backoff fingerprinting, and an attacker only needs to send a single, small UDP packet to identify the remote systems."

We have determined that it's possible for an attacker with modest resources to scan the entire routed Internet address space within a few weeks, and thus find all of the Nortel VPN router systems," he added.

Hills said the attack was serious because it is possible to find Nortel devices on the internet using simple hacker "fingerprinting" techniques. The attack also requires only a small piece of code to bring down thousands of machines at the same time, he said.

"This packet is less than 300 bytes in size, so an attacker with a 64Kb line could keep more than 7,000 Nortel VPN systems offline continuously, and someone with a 2Mb line has the potential to keep almost a quarter of a million systems offline," he said.

NTA is urging companies to install a software patch that was issued by Nortel on Friday.

"Nortel is aware of the potential issue with Nortel VPN Router portfolio, in which it may be possible for the VPN router or series of VPN routers to become disabled in the course of processing a malformed packet, constituting a denial-of-service attack," Nortel spokesman Pat Cooper said. "While the VPN routers will reboot automatically, this issue has the potential to require manual reboots of the affected VPN routers."

In March, NTA found a password flaw in Nortel's Contivity VPN client for Microsoft Windows.

Dan Ilett of Silicon.com reported from London.

See more CNET content tagged:
Nortel Networks Corp., VPN, UDP, denial of service, attacker

Add a Comment (Log in or register) (4 Comments)
  • prev
  • 1
  • next
Nortel blocks patch
by Que.Ball May 31, 2005 9:33 PM PDT
Just a note. Nortel blocks access to this patch unless you pay them for a service contract. You can try and sweet talk your way through to a technical support rep to try and get it.
Reply to this comment
access to this patch
by George Cole June 2, 2007 4:57 AM PDT
http://www.analogstereo.com/isuzu_axiom_owners_manual.htm
Nortel blocks patch
by Que.Ball May 31, 2005 9:33 PM PDT
Just a note. Nortel blocks access to this patch unless you pay them for a service contract. You can try and sweet talk your way through to a technical support rep to try and get it.
Reply to this comment
access to this patch
by George Cole June 2, 2007 4:57 AM PDT
http://www.analogstereo.com/isuzu_axiom_owners_manual.htm
(4 Comments)
  • prev
  • 1
  • next
advertisement

Latest tech news headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets

Market news, charts, SEC filings, and more

Related quotes

Dow Jones Industrials (0.83%) 85.25 10,414.14
S&P 500 (1.05%) 11.58 1,114.05
NASDAQ (1.17%) 25.97 2,237.66
CNET TECH (1.04%) 16.71 1,623.98
  Symbol Lookup
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
CES 2010
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET