Printer Friendly
The Free Library
19,604,530 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

BGP vulnerabilities in Cisco IOS.


Byline: jeevan@cpidubai.com (Staff)

Cisco last week issued -- and updated -- a security advisory for its IOS (1) (Internetwork Operating System) An operating system from Cisco that is the primary control program used in its routers. IOS is widely used and robust system software that supports the common functions of all products under Cisco's CiscoFusion architecture.  software. The vulnerability has to do with 4-byte Autonomous System numbers in BGP (Border Gateway Protocol) The routing protocol that is used to span autonomous systems on the Internet. It is a robust, sophisticated and scalable protocol that was developed by the Internet Engineering Task Force (IETF).  updates.<p>Cisco IOS software supporting IETF See Internet Engineering Task Force.

IETF - Internet Engineering Task Force  RFC 4893 for four octet An eight-bit storage unit. In the international community, octet is often used instead of byte.

(jargon, networking) octet - Eight bits. This term is used in networking, in preference to byte, because some systems use the term "byte" for things that are not 8 bits long.  AS number spaces in BGP are susceptible to denial of service attacks when handling BGP updates. There are two DoS vulnerabilities in the software, according to the advisory:<p>The first vulnerability could cause an affected device to reload when processing a BGP update that contains autonomous system (AS) path segments made up of more than one thousand autonomous systems.<p>The second vulnerability could cause an affected device to reload when the affected device processes a malformed malĀ·formed
adj.
Abnormally or faultily formed.  BGP update that has been crafted to trigger the issue.<p>Cisco says it released free software updates to address these vulnerabilities. There are no workarounds available for the first vulnerability but there is one for the second.<p>Copyright 2009 IDG Middle East. All rights reserved.

Provided by Syndigate.info an Albawaba.com company
COPYRIGHT 2009 Al Bawaba (Middle East) Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2009 Gale, Cengage Learning. All rights reserved.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Network World Middle East
Date:Aug 5, 2009
Words:175
Previous Article:AMD chipset improves integrated graphics.
Next Article:Testing Windows 7 in the cloud.



Related Articles
Qualys Security Advisory:.
Vulnerability Advisory: Network Associates McAfee(R) AVERT(TM) Alerts on Ten Cisco Vulnerabilities Exploited by New Hacking Toolkit; Network...
McAfee, Inc. Proactively Protects Corporate Network Infrastructures Against Cisco IOS and Other Critical Vulnerabilities.
Cisco releases three patches for Internet infrastructure.
Cisco releases three patches for Internet infrastructure.
Network management.
SANS says reverse engineering of Cisco patches possible
Cisco patches 12 vulnerabilities
Cisco releases security updates for IOS

Terms of use | Copyright © 2012 Farlex, Inc. | Feedback | For webmasters | Submit articles