Bugtraq mailing list archives
Re: Two birds with one worm.
From: "Emre Yildirim" <emre () vsrc uab edu>
Date: Thu, 19 Jul 2001 15:16:46 -0500 (CDT)
It looks like the "Code Red" worm has the added side effect of crashing Cisco (675/678) DSL CPEs running any CBOS prior to 2.4.1. The GET it sends looking for IIS servers hardlocks any modem with the web management interface enabled. CBOS v2.4.2 is unaffected. Also, turning off the web interface with 'set web disabled' also prevents the crashes.
I think this is an old bug in the Cisco DSL routers, and not really directly related to the "code red" worm. If the router runs an old version of CBOS, justissuing GET ? will lock it up. Like you mentioned, the best thing would be todisable the web interface or upgrade the firmware. Take a look at Bugtraq ID 2012 and this post from the archives: http://www.securityfocus.com/frames/?content=/templates/archive.pike% 3Flist%3D1%26mid%3D147562 It might be related. Cheers, -- emre () unix us eu org
Current thread:
- Two birds with one worm. Jason Hansen (Jul 19)
- Re: Two birds with one worm. Vision Net Administration (Jul 19)
- Re: Two birds with one worm. Chris Green (Jul 19)
- Re: Two birds with one worm. Ray DeJean (Jul 19)
- Re: Two birds with one worm. Phil Brutsche (Jul 19)
- Re: Two birds with one worm. Chris Green (Jul 19)
- Re: Two birds with one worm. Vision Net Administration (Jul 19)
- Re: Two birds with one worm. Mike Lewinski (Jul 19)
- Re: Two birds with one worm. Hugo van der Kooij (Jul 19)
- Re: Two birds with one worm. Emre Yildirim (Jul 19)
- <Possible follow-ups>
- Re: Two birds with one worm. Harris, Michael C. (Jul 19)
- Re: Two birds with one worm. Brian.J.Mauter (Jul 20)