ZDNet UK


Skip to Main Content

  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Videos
  6. Jobs
  7. Resources
  8. Community

 

ZDNet UK RSS Feeds


Security threats Toolkit

Flaws found in Cisco, Juniper and IBM kit

Dan Ilet ZDNet.co.uk

Published: 12 Apr 2005 17:40 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Cisco, Juniper and IBM are suffering embarrassment today as a Home Office agency announced details of a software vulnerability that affects the vendors' products.

The National Infrastructure Co-Ordination Centre (NISCC) has published details of a denial-of-service vulnerability that can affect routers' ability to handle TCP traffic. Hackers commonly use denial-of-service attacks to flood target computers with data so they fail to work.

The NISCC Web site stated: "The impact of the ICMP TCP reset vulnerability varies by vendor and application, but in some deployment scenarios it is likely to be rated medium to high. If exploited, [this] could allow an attacker to create a denial-of-service condition against existing TCP connections, resulting in premature session termination."

Cisco is advising customers to update their products. It admitted that the problem affects PIX firewalls and all products running IOS — the operating system the majority of Cisco routers use.

"There is a free software fix available," said a Cisco spokesman. "It's an industry issue. We worked with NISCC to co-ordinate [the fix]." He added that the company had known about this for some time.

IBM admitted that its AIX operating system was also vulnerable, but the company appeared not have released detailed information yet. IBM was unable to respond in time for the publication of this article.

On NISCC's Web site, a Juniper spokesman wrote: "Juniper Networks M-series and T-series routers running certain releases of JUNOS software are susceptible to this vulnerability." Juniper also failed to respond to requests for comment.

Although the three vendors are unlikely to be the only companies affected by the vulnerability, their products form a large part of the Internet infrastructure.

NISCC has published details of how to characterise and fix the problem on its Web site.

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Did you find this article useful?
66 out of 129 people found this useful


In association with Intel

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:







Related Jobs

SAP Batch Support Analyst

3rd Line Network and Security Consultant West London -35-40k

IP Support Engineer, Juniper, M/T, ERX, NetScreen, JNCIA, Basingstoke

Video icon

Latest Video

Win a Yoggie Gatekeeper Card Pro and Compaq notebook

Win a Yoggie Gatekeeper Card Pro and Compaq notebook

How many security software applications are found in a Gatekeeper Card Pro?

Competition closes - 22 Jan 2009

Sentry Posts Blog

EC smartcard cartel raid companies nam...

The semiconductor companies raided by European Commission anti-competition inspectors in October were STMicroelectronics, NXP, Infineon, and Renesas, according to a Reuters article. Inspectors... More

Post a comment

Mobile Security and the MD5 Hack: Day...

Mobile Security and the MD5 Hack: Day Trading By Mobile Beware Author: Eric Everson, Founder MyMobiSafe.com It seems that we can do as much or more from our phones today than we... More

Post a comment

AT&T and TMobile: The New Era of Mobil...

AT&T and TMobile: The New Era of Mobile Security Complexity Author: Eric Everson, Founder MyMobiSafe.com It has been just days since AT&T and TMobile have been issued steep fines... More

Post a comment

Featured Oracle Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

See All White Papers