Potential Zero Day Cisco IOS DoS Vulnerabilities

Ένα νέο πρόβλημα δημοσιεύτηκε στην Bugtraq mailing list [ 1 / 2 ], για Cisco's router and switch 2 νεα zero day Denial of Service (DoS) vulnerabilities. Οι αρχική ερεύνα έγινε από την penetration test team Of NCNIPC (China).

Οι πληροφορίες που έχουν δώσει είναι ελάχιστες και από την cisco ούτε το έχουν διαψεύσει αλλά ούτε και το έχουν αποδεχτεί

Μικρό απόσπασμα για αυτό

. They do say, attackers can trigger one DoS with a UDP packet flood and the other with SNMP packet sent to improper ports. In either case, the attack can put your IOS devices in a non-responsive state, requiring a reboot. By carrying out this sort of attach against your gateway router, and attacker can failry easily knock you offline

In the meantime, keep your eyes out for UDP floods

Cisco has since replied to these vulnerability allegations, saying they are researching the situations. However, they did not confirm or deny the DoS flaws, nor have they had time to release patches. Until they do, you can mitigate the risk of one of the flaws by disabling SNMP on your IOS device.