Re: Mike Lynn released information about a hacking Cisco IOS
From: Mark Teicher (mht3_at_earthlink.net)
Date: Fri, 12 Aug 2005 19:07:28 -0400 To: matt <firstname.lastname@example.org>
Is this another one of those "Scanrand" can scan at a rate of 65,000
ips without setting off IDS/IPS appliances ??
At 12:38 PM 8/8/2005, matt wrote:
>Just for the record, cisco shellcode has already been created and
>run, check out www.phenoelit.de
>Learn Security Online, Inc.
>* Security Games * Simulators
>* Challenge Servers * Courses
>* Hacking Competitions * Hacklab Access
>>-----BEGIN PGP SIGNED MESSAGE-----
>>If shellcode can be run on routers as Mike's presentation showed,
>>well then I think that we're all going to be in for a world of hurt
>>sometime in the future.
>>Cisco did nothing but prove the fact that this is a real threat by
>>doing what they did in regard to all the cease and desist orders, and
>>confiscating the presentation at Blackhat.
>>Just my 2p's worth.
>>On 4 Aug 2005, at 01:42, Kelly Martin wrote:
>>>ddjjembe 2 wrote:
>>>>Last week Mike Lynn released information about a hacking Cisco
>>>>IOS. Is there a patch to protect from this vulnerability?
>>>Just keep your routers patched and you'll be safe. He used a very
>>>new technique with an old vulnerability that has already been
>>>patched. The biggest issue is that people aren't used to patching
>>>their Cisco routers because no one has even been able to prove that
>>>shellcode can run on IOS before.
>>-----BEGIN PGP SIGNATURE-----
>>Version: GnuPG v1.4.1 (Darwin)
>>-----END PGP SIGNATURE-----