Hawk35
06-06-2001, 05:26 PM
I just thought I'd share this with you folks. I know that MANY folks out there have these modems for their broadband connections.
Here is the issue involved:
I. Vulnerabilities and Security Issues: Certain CBOS firmware for the Cisco 675 and Cisco 678 has vulnerabilities that allow a hacker to exploit TCP port 80. This TCP port 80 is what allows the CPE to be configured and maintained from a web browser. The hacker, via a UNIX machine for example, can attack this port and cause the CPE to lock up and need to be power cycled to be cleared. There are also other issues that allow ICMP and SYN attacks to occur. If the CPE is running a CBOS version lower that version 2.3.9, the CPE is susceptible
Here are some links to explain the vulnerabilities, and to get the patches:
http://www.cisco.com/warp/public/707/CBOS-multiple.shtml
http://www.cisco.com/kobayashi/sw-center/sw-access.shtml
Here is the issue involved:
I. Vulnerabilities and Security Issues: Certain CBOS firmware for the Cisco 675 and Cisco 678 has vulnerabilities that allow a hacker to exploit TCP port 80. This TCP port 80 is what allows the CPE to be configured and maintained from a web browser. The hacker, via a UNIX machine for example, can attack this port and cause the CPE to lock up and need to be power cycled to be cleared. There are also other issues that allow ICMP and SYN attacks to occur. If the CPE is running a CBOS version lower that version 2.3.9, the CPE is susceptible
Here are some links to explain the vulnerabilities, and to get the patches:
http://www.cisco.com/warp/public/707/CBOS-multiple.shtml
http://www.cisco.com/kobayashi/sw-center/sw-access.shtml