Adirondack Web Services AWS: Growing Business with Technology Home  |  About Us  |  Contact  | 
 
AWS Internet Home Check Your AWS Webmail Contact Adirondack Web Services View this page in printer-friendly format Email this page to a friend!   For sales call toll-free 1.866.736.8531
Fri July 04, 2008
Home

Articles

Services

  Copy Writing

  Custom Programming

  Database Development

  E-Commerce Design

  Flash Development

  Graphic Design

  Internet Access

  Internet Marketing

  Live Chat

  Network Design

  Phone Services

  Real Estate Solutions

  Site Tracker

  Software Development

  Web Design

  Web Hosting

  Website Management

About AWS

Portfolio

Contact

Newsletter

Help & Demos

Testimonials

Links


AWS RSS Feed GeoURL

Bookmark AWSBookmark This Page
 
Email this page to a friend Email AWS to a Friend

Visa, MasterCard and American Express Accepted
 
Instant Message AWS
 
 
Author Image Author Information
Jasen Lawrence
Programming, Web Design
jasen@awsinternet.com
Jasen Lawrence joined the team in August of 2004 and is the resident coder and back-end backbone of AWS. Schooled at Juniata College in Pennsylvania and by many caffeinated hours o... [more about this author]

Cisco IOS IPv6 Crafted Packet Vulnerability
July 29th, 2005, 2:37pm CDT AWS RSS Feed View This Article In PDF Format.

 

Cisco Internetwork Operating System (IOS) Software is vulnerable to a Denial of Service (DoS) and potentially an arbitrary code execution attack from a specifically crafted IPv6 packet. The packet must be sent from a local network segment. Only devices that have been explicitly configured to process IPv6 traffic are affected. Upon successful exploitation, the device may reload or be open to further exploitation.

This exploit was recently was demonstrated By Michael Lynn at the Black Hat Security Conference. Lynn actually left his job at Internet Security Systems to deliver the presentation after ISS decided to pull the session. Shortly after a request for a temporary restraining order was filed jointly by Cisco and Internet Security Systems against the former ISS researcher Michael Lynn and the organizers of the Black Hat security conference. Lynn claimed that this vulnerability could, "Bring the internet to its knees." The dispute, however, was settled a day later, when all parties agreed to a permanent injunction barring them from further discussing the presentation that Lynn gave.

"I think I did the right thing. It was pretty scary, but the real important thing was: There was the potential of (a) serious problem", Lynn said.

What systems are affected:
-All Cisco devices running any unfixed version of Cisco IOS code that supports, and is configured for, IPv6. You can use the show ipv6 interface command to determine whether IPv6 is enabled on a system.

What systems are not affected:
-Products that are not running Cisco IOS are not affected.
- A system which supports IPv6, if not specifically configured for IPv6, is not affected.
- Products running any version of Cisco IOS that do not have IPv6 configured interfaces are not vulnerable.
- No other Cisco products are currently known to be affected by these vulnerabilities.

 

Perma-Link: http://www.awsinternet.com/articles/2005/IPv6_Crafted_Packet_Vulnerability.html

Related Links:
http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml
http://www.cisco.com/
http://www.blackhat.com
http://www.iss.net
Site © 2001 - 2008 Adirondack Web Services. Site designed, maintained, and hosted by AWSInternet. -
Built in 0.1346499 secs.   Currently 42 guest(s) on-line.