I was on a conference call with Cisco and the Cisco rep felt we were overreacting by rushing to change our code right away, He said that the packet was extremely difficult to create and the person would have to be a "genius" to make it.
Duncan At 04:33 PM 7/17/2003 +0000, Priscilla Oppenheimer wrote: >Oscar wrote: > > > > Cisco Security Advisory: Cisco IOS Interface Blocked by IPv4 > > Packet > > > > lots and lots of IOS versions are affected > > > > http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml > > > > > >Thanks for the link. It's scary. Of course, with the proper ACLs, a router >wouldn't be affected, but probably lots of routers don't have "the proper >ACLs." > >Anyone know the details? The advisory just says this: > >"A rare, specially crafted sequence of IPv4 packets which is handled by the >processor on a Cisco IOS device may force the device to incorrectly flag the >input queue on an interface as full, which will cause the router to stop >processing inbound traffic on that interface. This can cause routing >protocols to drop due to dead timers." > >I think Cisco was right not to publish the details about these "rare, >specially crafted" packets, but does anyone have the details? Maybe if you >can get to the bugtracker, the details are in there. > >Thanks > >Priscilla Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=72510&t=72463 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
