ex ISS Researcher Lynn details Cisco Vulnerability at Black Hat
Cisco routers run the Internet. Just as Microsoft Windows rules and runs the desktop, Cisco routers rule and run the Internet. They control the basic flow of Internet traffic.
A successful attack to Cisco router's operating system, IOS, is very serious and can bring the entire Internet to its knees. IOS attacks are less frequent for a number of reasons, including that most hackers have less familiarity with IOS than Windows, and IOS is simpler than Windows and hence tends to be more secure. But nothing is totally secure, including Cisco routers and IOS.
Internet Security Systems' Michael Lynn found a bug in IOS that allowed him to shut down Cisco routers. The bug has been long since patched, since April, although many routers have not had the patch implemented yet.
Lynn was going to detail his Cisco attack at the Black Hat conference, but the talk was canceled due to pressure from Cisco. Since many routers still not updated, the attack IS viable.
Lynn quit his job at ISS and gave the presentation anyways! This guy has got balls! He explained that giving the talk was "the right thing to due," citing concerns over the misconception that Cisco's products are somehow less vulnerable to attacks than Windows.
Both Cisco and ISS allegedly threatened him with legal action if he proceeded and gave his talk.
Not publicizing the attack details, as Lynn did, makes sense. Many routers are still vulnerable. However raising the awareness of security issues, including debunking a false sense that routers are close to invulnerable, is a noble act. I wasn't there and don't have all the details, but certainly can see both sides of the issue.
Lynn also voiced his opinion with concerns about Cisco's IOS getting more complex in subsequent releases.
INCREASING SOFTWARE COMPLEXITY is a MAJOR ISSUE with most software and I agree whole heartedly!! More complexity = less reliable and less secure!
A successful attack to Cisco router's operating system, IOS, is very serious and can bring the entire Internet to its knees. IOS attacks are less frequent for a number of reasons, including that most hackers have less familiarity with IOS than Windows, and IOS is simpler than Windows and hence tends to be more secure. But nothing is totally secure, including Cisco routers and IOS.
Internet Security Systems' Michael Lynn found a bug in IOS that allowed him to shut down Cisco routers. The bug has been long since patched, since April, although many routers have not had the patch implemented yet.
Lynn was going to detail his Cisco attack at the Black Hat conference, but the talk was canceled due to pressure from Cisco. Since many routers still not updated, the attack IS viable.
Lynn quit his job at ISS and gave the presentation anyways! This guy has got balls! He explained that giving the talk was "the right thing to due," citing concerns over the misconception that Cisco's products are somehow less vulnerable to attacks than Windows.
Both Cisco and ISS allegedly threatened him with legal action if he proceeded and gave his talk.
Not publicizing the attack details, as Lynn did, makes sense. Many routers are still vulnerable. However raising the awareness of security issues, including debunking a false sense that routers are close to invulnerable, is a noble act. I wasn't there and don't have all the details, but certainly can see both sides of the issue.
Lynn also voiced his opinion with concerns about Cisco's IOS getting more complex in subsequent releases.
INCREASING SOFTWARE COMPLEXITY is a MAJOR ISSUE with most software and I agree whole heartedly!! More complexity = less reliable and less secure!
posted by Ted Demopoulos at 8:09 AM
Comments on "ex ISS Researcher Lynn details Cisco Vulnerability at Black Hat"
post a comment