Alert over Cisco router vulnerability

ISPs and enterprises have rushed to fix a vulnerability in Cisco routers and switches which could have left them open to denial...

ISPs and enterprises have rushed to fix a vulnerability in Cisco routers and switches which could have left them open to denial of service attacks.

The network equipment giant issued a patch on Wednesday for the vulnerability, which potentially allows attackers to cause devices to think they are full, crash and refuse any more traffic.

The flaw affects all IP version 4 Cisco switches and routers running IOS versions 11.x and 12.x. This means most Cisco devices are vulnerable. Those that are not include kit running in IP version 6 environments and those with IOS version 12.3 and above.

Iain Stevenson, an analyst with Ovum, said, "It is a difficult issue for network managers - we are often alerted to these types of vulnerabilities but how often will there actually be a threat? Applying patches can lead to more problems. Being circumspect, monitoring traffic and then applying patches at a later date may be the best approach."

Read more on IT risk management

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close