Bugtraq mailing list archives

Re: Two birds with one worm.

From: "Emre Yildirim" <emre () vsrc uab edu>
Date: Thu, 19 Jul 2001 15:16:46 -0500 (CDT)

It looks like the "Code Red" worm has the added side effect of crashing
Cisco (675/678) DSL CPEs running any CBOS prior to 2.4.1. The GET it
sends looking for IIS servers hardlocks any modem with the web
management interface enabled.

CBOS v2.4.2 is unaffected.  Also, turning off the web interface with
'set web disabled' also prevents the crashes.


I think this is an old bug in the Cisco DSL routers, and not really directly
related to the "code red" worm.  If the router runs an old version of
CBOS, justissuing GET ? will lock it up.  Like you mentioned, the best thing would
be todisable the web interface or upgrade the firmware.

Take a look at Bugtraq ID 2012 and this post from the archives:

http://www.securityfocus.com/frames/?content=/templates/archive.pike%
3Flist%3D1%26mid%3D147562

It might be related.
Cheers,

--
emre () unix us eu org

Current thread:

Two birds with one worm. Jason Hansen (Jul 19)
- Re: Two birds with one worm. Vision Net Administration (Jul 19)
  - Re: Two birds with one worm. Chris Green (Jul 19)
    - Re: Two birds with one worm. Ray DeJean (Jul 19)
    - Re: Two birds with one worm. Phil Brutsche (Jul 19)
- Re: Two birds with one worm. Mike Lewinski (Jul 19)
  - Re: Two birds with one worm. Hugo van der Kooij (Jul 19)
- Re: Two birds with one worm. Emre Yildirim (Jul 19)
- <Possible follow-ups>
- Re: Two birds with one worm. Harris, Michael C. (Jul 19)
  - Re: Two birds with one worm. Brian.J.Mauter (Jul 20)