Net Manager
Network Managing, Engineering and Administration with an eye toward security.

Best practices meets the real world!

Thursday, January 27, 2005  
Three major Cisco vulnerabilities

Cisco has released fixes for three new vulnerabilities. The three are BGP, MLPS, and IPv6 related. All three vulnerabilities cause reloads of the IOS which makes them pretty severe issues.

So far, the worst one appears to be the Misformed BGP Packet Causes Reload problem. Malformed packet can cause a reboot of the IOS which used repeatedly can be a DOS issue. This can be mitigated somewhat by using the MD5 shared secret, which makes exploitation difficult, but not impossible. The IPv6 shouldn't be too much of an issue due to the lack of production systems. The MLPS looks like it also is mitigated by a lower number of systems that use MLPS.

You need to check into these issues to see if you need to apply patches to your systems.

posted by David | 1/27/2005 08:49:00 AM


Anonymous Anonymous said:

its gud but doesnt seem to work the thinking ...

9:42 AM, August 04, 2007  

Post a Comment

<< Home

News Links
Blog Links


Reading blogs at work? Click to escape to a suitable site!
Get Firefox

Site Meter

Powered by Blogger