Cisco Systems is warning of three vulnerabilities within its Internet Operating System (IOS) software that could allow a denial-of-service (DoS) attack or let a hacker run arbitrary code on an affected switch router.
The company has published workarounds and issued an updated version of the software.
The three problems are:
-- TCP packet problem : A memory leak in certain versions of IOS could lead to a DOS attack, according to an advisory from the U.S. Computer Emergency Readiness Team. (CERT)
-- IPv6 router header vulnerability: IOS can fail to properly process IPv6 (Internet Protocol version 6) packets with specially-crafted routing heads, which could allow a DOS attack or the running of arbitrary code. IPv6 is a set of specifications that enables more IP addresses to be available on the Internet.
-- Crafted IP option vulnerability : This is a bug concerning how IOS processes IPv4 packets with a specially-crafted IP option, CERT said. It could also enable a DOS attack or the running of arbitrary code.
CERT wrote that all three vulnerabilities could cause a device to reload its OS. In that case, a secondary, sustained DOS condition could be caused since packets won't go through the device.
"Because devices running IOS may transmit traffic for a number of other networks, the secondary impacts of a denial of service may be severe," CERT said.
Get the independent advice and expertise you need to support a virtual workforce.
The increase in Linux popularity has increased the frequency and sophistication of malware attacks. Read this 2 page white paper now to learn how you can protect your Linux environment with real-time protection that is certified by all major Linux vendors.
Download now »
Ensuring acceptable application delivery will become even more difficult over the next few years. As a result, IT organizations need to ensure that the approach that they take to resolving the current application delivery challenges can scale to support the emerging challenges. This handbook elaborates on the key tasks associated with planning, optimization, management and control and provides decision criteria to help IT organizations choose appropriate solutions.
Download now »
A common misconception is that mid-range storage requirements are dramatically different than that of a larger enterprise. Mid-range storage users may require less capacity, but they have similar functionality and management requirements. This ESG paper examines mid-range storage needs and reviews a new solution that adjusts size while retaining value, performance and functionality.
Download now »
This white paper provides guidance on how to develop a strategic approach to managing and monitoring logs, a key function required for compliance with many regulatory mandates and a critical defense against security threats.
Download now! »
Learn about the processes and technologies that support security information management (SIM) operations, as well as the business case for SIM. The series examines different options for implementing SIM and gives you evaluation criteria for selecting the best option for your organization.
Download now! »
Learn the strategies, actions, and capabilities that Best-in-Class organizations employ and technologies they choose to obtain superior performance against various security performance metrics. This report provides guidelines for identifying which security solutions to consume as a MSS and defines best practices for choosing and managing MSSPs.
Download now! »
Recommend This
