Robert Lemos, SecurityFocus 2005-07-31
LAS VEGAS -- In a room at the Alexis Park Hotel, a nightmare scenario for Cisco has begun to unfold.
Colapse all |
Post comment
Exploit writers team up to target Cisco routers
2005-08-01
Anonymous (1 replies)
Anonymous (1 replies)
Rob - you've done an excellent job on this article. And to all the hackers working on this - keep it up. It's time Cisco realizes it can't hide the truth....
[ more ] [ reply ]
[ more ] [ reply ]
Re: Exploit writers team up to target Cisco routers
2005-08-02
Anonymous (1 replies)
Anonymous (1 replies)
People still run Cisco routers? They're obsolete as far as I'm concered.
www.juniper.net - switch today
...
[ more ] [ reply ]
www.juniper.net - switch today
...
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-01
Mike (1 replies)
Mike (1 replies)
Shame on Cisco for trying to suppress this information rather than fixing the vulnerability. How long before people refuse to accept this kind of malfeasance from corporations like Cisco??
Mike
www.StupidStuff.org...
[ more ] [ reply ]
Mike
www.StupidStuff.org...
[ more ] [ reply ]
Re: Exploit writers team up to target Cisco routers
2005-08-02
Alexey Vesnin
Alexey Vesnin
It will last only as long as we'll keep the corporations like Cisco unresponsible for such an actions. By the way - what OS you're running on while you're reading that lines? Windows? Have you bought it? If both answers are "yes", then try to go to some warez sites and grab a serial. Don't buy it! D...
[ more ] [ reply ]
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-01
Anonymous (1 replies)
Anonymous (1 replies)
"For years, Cisco has told you that IOS was impossible to (compromise) ... Others have come close to disproving this claim, but until now, now one has ever demonstrated reliable exploitation techniques or shellcode for IOS," ------- Absolutely NOT ! Running shell code on Cisco IOS based devices was...
[ more ] [ reply ]
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-01
muskrat
muskrat
Very well-written article. Wish I could've seen that at DEFCON. Sounds like a scene from a movie.
While I don't agree with Cisco's actions its important to realize how much is at risk if too much information about the vulnerability is spread before Cisco has time to take action. Let's just h...
[ more ] [ reply ]
While I don't agree with Cisco's actions its important to realize how much is at risk if too much information about the vulnerability is spread before Cisco has time to take action. Let's just h...
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-02
wk
wk
Well Stated
Wonder if this is a perverse marking move to sell the next generation of Equipment and Service contracts. The FUD Factor.
Sad, to say it could spell the end of little ISP with the service disruptions and render the internet almost useless. They should get the Tort Lawyers on to th...
[ more ] [ reply ]
Wonder if this is a perverse marking move to sell the next generation of Equipment and Service contracts. The FUD Factor.
Sad, to say it could spell the end of little ISP with the service disruptions and render the internet almost useless. They should get the Tort Lawyers on to th...
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-02
Anonymous
Anonymous
How do you know, that problem that Cisco fixed in his latest security patches is related to exploit used by Lynn? I think it is unrelated:
- Cisco and other company cannot release tested code in 1-2 day in >10 platform
- According to reports Mr. Lynn could demonstrate his method on another rout...
[ more ] [ reply ]
- Cisco and other company cannot release tested code in 1-2 day in >10 platform
- According to reports Mr. Lynn could demonstrate his method on another rout...
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-02
Crash Override
Crash Override
Yak Yak Yak. If anybody yells "Hack the Planet",
I think I'm going to be sick...
Cisco doesn't want their dirty laundry aired in a room filled with neon lights, slot machines, and stale beer? Go figure.
Program code has bugs. I'm shocked!
CISCO got 6000 miles out of a 3000 mile IOS.
Deal...
[ more ] [ reply ]
I think I'm going to be sick...
Cisco doesn't want their dirty laundry aired in a room filled with neon lights, slot machines, and stale beer? Go figure.
Program code has bugs. I'm shocked!
CISCO got 6000 miles out of a 3000 mile IOS.
Deal...
[ more ] [ reply ]
Don't like bloated presentations
2005-08-03
Pet Peeve (1 replies)
Pet Peeve (1 replies)
The Lynn presentation itself is 1.90 MB. It appears that the three or four eye-candy images are not embedded efficiently. Are they .bmp images instead of .jpg?
Also, since most presentation are projected 800x600 (or maybe a bit higher), you don't really need super hi-res images...
The file sh...
[ more ] [ reply ]
Also, since most presentation are projected 800x600 (or maybe a bit higher), you don't really need super hi-res images...
The file sh...
[ more ] [ reply ]
Exploit writers team up to target Cisco routers
2005-08-03
Scott Graham (2 replies)
Scott Graham (2 replies)
what I find more appalling than cisco's censorship is people egging on the hackers hoping they rediscover the vulnerability and exploit. This makes you no better than scum yourselves, the people that get harmed are the innocent sites with cisco gear, you are all advocating that anyone that happens t...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Exploit writers team up to target Cisco routers
2005-08-03
Anonymous (1 replies)
Anonymous (1 replies)
Well Scott, I would be curious what your solution would be to the problem? If a corporation is not held accountable, as is the case currently, why would they want to spend the money to fix buggy code? Why not just use the courts to try to hide the problem, is that your answer? The black hats are ...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Exploit writers team up to target Cisco routers
2005-08-05
PMMC (1 replies)
PMMC (1 replies)
[Quote:]
independent security researcher Riley "Caezar" Eller:
"Honestly, there is enough resistance to information sharing on the part of Cisco that it seems a moral imperative to hack on Cisco and show their position--that this information can be hidden--is indefensible," [unquote]
Perhaps, S...
[ more ] [ reply ]
independent security researcher Riley "Caezar" Eller:
"Honestly, there is enough resistance to information sharing on the part of Cisco that it seems a moral imperative to hack on Cisco and show their position--that this information can be hidden--is indefensible," [unquote]
Perhaps, S...
[ more ] [ reply ]
It's not the first time Cisco behavied so bad
2005-08-03
Anonymous
Anonymous
Last researchers that contacted cisco before disclosing a vulnerability where sued by cisco:
http://kerneltrap.org/node/3085
http://kerneltrap.org/node/5382
Cisco even tried to patent theire discoveries ! So how can they, now, be such phoney and blame Lynn for this full disclosure ?
It's only t...
[ more ] [ reply ]
http://kerneltrap.org/node/3085
http://kerneltrap.org/node/5382
Cisco even tried to patent theire discoveries ! So how can they, now, be such phoney and blame Lynn for this full disclosure ?
It's only t...
[ more ] [ reply ]
Exploits of Cisco routers are already known
2005-08-06
Anonymous (1 replies)
Anonymous (1 replies)
Folks, we need to be clear about what exposure means. No disrespect to Mr. Lynn but I have zero doubt that people other than Mr. Lynn know exactly what he was talking about and have known for a long time (like way before it was patched by Cisco).
All vulnerabilities exist before they are exposed....
[ more ] [ reply ]
All vulnerabilities exist before they are exposed....
[ more ] [ reply ]
Cisco - Large Vendors Make the Best Targets! The Next Microsoft?
2005-08-06
vatoDETH (1 replies)
vatoDETH (1 replies)
I think that Cisco has now opened themselves up for more attacks. They have made a lot of hackerz angry. And hackerz will now be more motivated to prove something, whatever their new motives are.
CISCO is dominant on the market for Internet hardware, but that makes them a logical target. For the ...
[ more ] [ reply ]
CISCO is dominant on the market for Internet hardware, but that makes them a logical target. For the ...
[ more ] [ reply ]
Re: Cisco - Give me (and them) a break
2005-08-11
Anonymous (1 replies)
Anonymous (1 replies)
Great article. Lynn supposedly resigned, he didn't get fired. I don't see why everyone is so anti-cisco all of a sudden. Shouldn't any company be given a chance to fix the problem before an exploit is released? From what I've seen, it doesn't seem like Cisco was given the chance and they have a ...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Re: Cisco - Give me (and them) a break
2005-09-18
Anonymous (1 replies)
Anonymous (1 replies)
As far as having a bigger responsibility for timely patches, I think Microsoft and Cisco are equal. As for time to fix it before an exploit is released, I want to say that cisco should have been patching it instead of suing Lynn. It probably would have used less resources and caused less dammage. Ci...
[ more ] [ reply ]
[ more ] [ reply ]
Re: Re: Re: Cisco - Give me (and them) a break
2006-01-20
Anonymous
Anonymous
"I want to say that Cisco should have been patching it instead of suing Lynn."
That is a pretty stupid remark. Do you actually believe that the people who work on bugfixes are the same people who go to court? I mean come on? How many employees do you think Cisco has? 1? Rest assured they were...
[ more ] [ reply ]
That is a pretty stupid remark. Do you actually believe that the people who work on bugfixes are the same people who go to court? I mean come on? How many employees do you think Cisco has? 1? Rest assured they were...
[ more ] [ reply ]
reign->rein...
[ more ] [ reply ]