Full Disclosure mailing list archives
Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover
From: Richard Johnson <rdump () river com>
Date: Thu, 24 Jul 2003 14:29:57 -0600
In article <1059029372.1180.7.camel () elendil intranet cartel-securite net>, Cedric Blancher <blancher () cartel-securite fr> wrote:
I checked this and it appears packets have to be addressed to target router. Transit evil packets which TTL would expire on a router won't affect it.
Our networking guys say that TTL expiry inbound or outbound from a
vulnerable router may only cause queue fillup when using PIM packets.
(I'd test directly before posting, but multicast is enabled on all our
Ciscos.)
If no-one can confirm a failure en passant, then I'd say directly
addressing the router's IP is required.
Richard
--
My mailbox. My property. My personal space. My rules. Deal with it.
http://www.river.com/users/share/cluetrain/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover lee . e . rian (Jul 21)
- RE: Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover Curt Purdy (Jul 22)
- <Possible follow-ups>
- Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover Shawn Bernard (Jul 22)
- RE: Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover lee . e . rian (Jul 23)
- RE: Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover Cedric Blancher (Jul 24)
- Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover Richard Johnson (Jul 24)
- RE: Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover Cedric Blancher (Jul 24)