TechTarget

Cisco warns of router security flaws

Cisco has reported major vulnerabilities in the Intrusion Prevention System (IPS) feature set of its Cisco IOS routing and switching operating system.

Cisco has reported major vulnerabilities in the Intrusion Prevention System (IPS) feature set of its Cisco IOS routing and switching operating system.

The flaws allow attackers to bypass the intrusion prevention system and enter users’ networks or crash a router and cause a denial of service attack.

Cisco said fragmented IP packets could be used by attackers to evade signature inspection by the security software.

In addition, IPS signatures using the regular expression feature of the ATOMIC.TCP signature engine may cause a router to crash to cause a denial of service attack.

Cisco said there were workarounds available to mitigate the threats, and it has made free software available to address the vulnerabilities in affected systems.

A large number of Cisco products are threatened by the flaws, although Cisco said it was not aware of any attacks using the bugs in the wild.

The fragmented IP packets flaw was discovered internally by Cisco, and the other threat was reported to the supplier by a customer, said Cisco.

Read the full Cisco security advisory

Cisco upgrades campus networking offering

Comment on this article: computer.weekly@rbi.co.uk

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close