Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Cisco firewalls vulnerable to remote takeover
iTnews-aus ^ | Feb 12 2016 9:31AM (AUS) | Juha Saarinen

Posted on 02/11/2016 6:45:01 PM PST by Utilizer

Cisco has scrambled to fix a serious vulnerability in its Adaptive Security Appliances and Next-Generation Firewalls products which can be used to remotely take over and reboot the devices.

Unauthenticated remote attackers can exploit a bug in the internet key exchange (IKE) version 1 and 2 protocol code running on Cisco ASA software, and trigger a buffer overflow.

IKE is used to authenticate connections and to set up secure virtual private networks, landing on the firewalls.

Security researchers David Barksdale, Jordan Gruskovnjak and Alex Wheeler said the algorithm for reassembling fragmented IKE payloads "contain a bounds-checking flaw that allows a heap buffer to be overflowed with attacker-controlled data".

The vulnerability can be triggered through malformed user datagram protocol (UDP) packets, sent via IP versions 4 and 6 traffic.

(Excerpt) Read more at itnews.com.au ...


TOPICS: Business/Economy; Computers/Internet
KEYWORDS: bug; cisco; firewalls; hacking; security; vpn
Cisco users beware! A patch has been issued.
1 posted on 02/11/2016 6:45:01 PM PST by Utilizer
[ Post Reply | Private Reply | View Replies]

To: Utilizer

Don’t programmers debug their programs before they offer them to the public?

It sounds like it is a good thing to do, but apparently it is not one shared by I.T. industry.


2 posted on 02/11/2016 6:47:16 PM PST by txnativegop (Tired of liberals, even a few in my own family.)
[ Post Reply | Private Reply | To 1 | View Replies]


3 posted on 02/11/2016 7:01:23 PM PST by DoughtyOne (the Free Republic Caucus: what FReepers are thinking, 100s or 1000s of them. It's up to you.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: DoughtyOne

Grooooovy, man. Is it an interpretation of a Cisco Firewall?


4 posted on 02/11/2016 7:17:01 PM PST by dayglored ("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
[ Post Reply | Private Reply | To 3 | View Replies]

To: dayglored

No. Just a graphic I found on the internet. I increased the length about ten times and animated it.


5 posted on 02/11/2016 7:21:10 PM PST by DoughtyOne (the Free Republic Caucus: what FReepers are thinking, 100s or 1000s of them. It's up to you.)
[ Post Reply | Private Reply | To 4 | View Replies]

To: dayglored

Don’t encourage it, mate.


6 posted on 02/11/2016 8:09:11 PM PST by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 4 | View Replies]

To: DoughtyOne

Too bad that don’t still go by PIX.


7 posted on 02/11/2016 9:10:35 PM PST by Lx (Do you like it? Do you like it, Scott? I call it, "Mr. & Mrs. Tenorman Chili.")
[ Post Reply | Private Reply | To 3 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson