Bad week for Cisco, security headaches



For starters, there was this advisory last week in response to a planned talk at a hacker convention on the possibility of a cisco router ipv6 exploit. The advisory detailed a LOCAL exploit and not the remote exploit that the talk was centered around. There was legal action against the speaker and materials detailing it were destroyed (literally ripped out of notebooks) at the convention by Cisco. Apparently this is the kind of vulnerability that could “shut down the internet”. Of course, much of the internet’s backbone runs on Cisco equipment. Next….



Next, what we see are hackers at a similar convention taking a more serious look at the possibility of a remote exploit against IPv6 in Ciscos equipment detailed in this article. But today may be the icing on the headache for Cisco. They’ve had a web security flaw at their customer portal. Passwords have been reset and the flaw reportedly could reveal logins of registered users in the search tool. It’s also reported that someone “broke in and stole unknown numbers of username and passwords”.

Most links above are courtesy of The Register, the last is from blogs.washingtonpost.com.

   Send article as PDF   

Similar Posts