Full Disclosure mailing list archives
Re: rumours of new Cisco IOS vulnerability
From: Blue Boar <BlueBoar () thievco com>
Date: Wed, 16 Jul 2003 14:45:45 -0700
Len Rose wrote:
According to what I've been reading it's a remotely exploitable denial of service situation, based on specially crafted packets designed to fill up the "process switched" input queues on an interface.
That generally means packets with a destination address of one of the router's own interfaces. If there's some mystery exploit out there, one workaround would be to firewall the router's own IP address(es). This would still allow the router to perform its routing function for other IPs.
BB
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- rumours of new Cisco IOS vulnerability Len Rose (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Blue Boar (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Christopher McCrory (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Len Rose (Jul 16)
- Re: rumours of new Cisco IOS vulnerability asi (Jul 16)
- Re: rumours of new Cisco IOS vulnerability christopher neitzert (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Rob Lemos (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Christopher McCrory (Jul 16)
- Re: rumours of new Cisco IOS vulnerability christopher neitzert (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Nigel Houghton (Jul 16)
- <Possible follow-ups>
- Re: rumours of new Cisco IOS vulnerability jklemenc (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Codex (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Mattias Ahnberg (Jul 16)
- Re: rumours of new Cisco IOS vulnerability Blue Boar (Jul 16)