RSS

Cisco IOS ก่อเรื่องอีกแล้วครับท่าน

05 Feb

ถึงท่านสาวก Cisco ทั้งหลาย… ได้เวลา update Patch ครั้งใหญ่แล้วล่ะครับ

 

Trio of Cisco flaws may threaten networks

Three security holes in the software that runs Cisco Systems’ routers and switches could let miscreants disrupt computer networks, including the Internet.

The vulnerabilities lie in Cisco’s Internetwork Operating System and could be exploited to crash or remotely run malicious code on devices that run the software, the San Jose, Calif., networking giant warned Wednesday in security advisories. IOS runs on Cisco’s routers and switches, which make up a large portion of the Internet’s infrastructure.

Cisco’s warning prompted the U.S. Computer Emergency Readiness Team, or US-CERT, to issue an alert. "A remote attacker may be able to execute arbitrary code on an affected device, cause an affected device to reload the operating system, or cause other types of denial of service," US-CERT said on it Web site.

Being able to execute arbitrary code means that an attacker could change the configuration of a router or switch, redirecting traffic or potentially sniffing the data that travels through a Cisco device. In a denial-of-service attack a vulnerable router or switch would be taken offline, disrupting any traffic it is tasked to channel.

"Because devices running IOS may transmit traffic for a number of other networks, the secondary impacts of a denial of service may be severe," US-CERT said.

The impact of each of the three vulnerabilities is different. The most serious of the problems, which relates to how IOS handles specific data packets, affects a broad range of Cisco devices. This includes routers and switches used by telecommunications companies that use Cisco’s gear to shuttle data traffic across networks.

"These are serious issues and patches need to be applied as soon as possible," said Gunter Ollmann, director of security strategy for IBM Internet Security Systems. "From our monitoring of underground channels there are a lot of people interested in these and actively working on exploits."

Cisco has software updates available to address the vulnerabilities, the company said in each of its alerts. "Cisco is also not aware of any current exploitation of these vulnerabilities," the company added.

Credit : http://guardiansoftware777.spaces.live.com/Blog/cns!18986C80143C5349!268.entry

Advertisements
 
3 Comments

Posted by on February 5, 2007 in Network Security

 

3 responses to “Cisco IOS ก่อเรื่องอีกแล้วครับท่าน

  1. S

    March 31, 2007 at 8:25 pm

    อยากถาม เรื่องสนามบิน สุวรรณภูมิ นะครับ ไม่ทราบ ตอนนี้ เป็นไงแล้วครับ ถ้าทราบ กรุณาให้ความรู้ผมด้วยนะครับ ขอบพระคุณครับ

     
  2. Tawin

    July 21, 2007 at 1:56 pm

    เป็นไงบ้างครับ สบายดีไหม
     
    พี่แวะมาขอบคุณสำหรับคำแนะนำเรื่องการซื้อโน๊ตบุ๊คในเว็ปของนักเรียนทุนน่ะครับ
     
    โชคดีนะครับ 

     
  3. alexander

    June 3, 2008 at 2:47 am

    nice to see  you visiting my pages and giving me credit I appreciate it. tell your friends bring some traffic ill be adding some cool stuff soon.

     

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: