Skip to main content /TECH with IDG.net
CNN.com /TECH
MAIN PAGE
WORLD
U.S.
WEATHER
BUSINESS
SPORTS
POLITICS
LAW
SCI-TECH
SPACE
HEALTH
ENTERTAINMENT
TRAVEL
EDUCATION
IN-DEPTH

QUICK NEWS
LOCAL
COMMUNITY
MULTIMEDIA
E-MAIL SERVICES
CNNtoGO
ABOUT US

CNN TV
what's on
show transcripts
CNN Headline News
CNN International
askCNN

EDITIONS
CNN.com Asia
CNN.com Europe
set your edition


Software flaw opens Cisco devices to hackers

From...
 Network World Fusion

By Joris Evers

(IDG) -- A flaw in Cisco Internetwork Operating System could allow hackers to gain full control over virtually all Cisco routers and switches using the software, Cisco said in a security advisory issued Thursday.

IDG.net INFOCENTER
IDG.net
Related IDG.net Stories
Features
Visit an IDG site


IDG.net search



The Computer Emergency Response Team at Carnegie Mellon University in Pittsburgh also warned of the vulnerability later Thursday.

A vulnerability exists in the HTTP server component of the IOS software. By requesting a particular URL from the server, a malicious user can bypass the authentication controls and execute commands on the device at the highest privilege level, Level 15, Cisco said.

Only devices with the HTTP server software enabled and with user names and passwords stored on the device -- the local authentication database -- are vulnerable, the company said. The issue affects all releases of Cisco IOS software starting with Release 11.3.

Once a hacker has gained access he could redirect data traffic, allowing him to intercept or modify the data. Additionally he could change or delete the device configuration, effectively disabling the router or switch until an engineer reprograms it, said Cisco Security and Network Management Systems Engineer Tames van der Does.

The HTTP server in IOS is used for remote management of the router or switch. However, a configuration with the HTTP server enabled and the local database for authentication used is a rarity, according to Van der Does.

"Most engineers use Telnet to access their network hardware and have a central Terminal Access Controller Access Control System or Radius server to authenticate users for all their networking hardware," he said, adding that the HTTP server is switched off by default on Cisco hardware.

Routers and switches direct network traffic and are used to interconnect computer networks. Cisco's hardware is used around the world by small and large businesses as well as home users.

Cisco has made software fixes available to plug the hole.





RELATED STORIES:
• Flaw revealed in some Cisco software
March 5, 2001
• Cisco switch users irked over delays
January 18, 2001
• Cisco recalls switch modules
January 16, 2000

RELATED IDG.net STORIES:
• Security firm reports vulnerability in Oracle8, 8i
(Network World Fusion)
• Firewall appliances back in vogue
(Computerworld)
• Sprint confirms denial-of-service attack
(Computerworld)
• Downsizings leave firms vulnerable to digital attacks
(Computerworld)
• Mercury tests system security -- or hackers will
(IDG.net)
• MS plugs seven Telnet security holes in Windows 2000
(IDG.net)
• Printer bug found in Sun's Solaris software
(IDG.net)
• Bug in Word can lead to security problems
(IDG.net)
RELATED SITES:
• Cisco advisory and security patch
• Cisco Systems

Note: Pages will open in a new browser window
External sites are not endorsed by CNN Interactive.
TECHNOLOGY TOP STORIES:
• Report: SUVs pose danger to cars
• New telemarketer tool trumps TeleZapper
• Terra Lycos logs $2.2B loss
• AOL to offer song downloads
• Microsoft seeks fiscal fountain of youth

(More)
 Search   

Back to the top
© 2003 Cable News Network LP, LLLP.
A Time Warner Company. All Rights Reserved.
Terms under which this service is provided to you.
Read our privacy guidelines. Contact us.