Leak in Cisco software exceeds 17,000 Dutch routers




A leak in Cisco software means that could be affected is estimated that more than 17,000 routers in the Netherlands. The leak is in IOS, Cisco IOS XE and Cisco IOS XR and can lead to theft of sensitive data.

It involves all Cisco routers running a vulnerable version of IOS, IOS XE, and IOS XR. Cisco has a list put online what software versions are affected. Updating is the only solution. According to the router maker, there is no workaround to protect the equipment from the leak.

The leak is in the IKEv1 Support in the software. The software does not do sufficient checks on incoming UDP packets that make security requests. An attacker can exploit by sending an engineered package, which then accepts blindly the router. Then an attacker can retrieve the contents of memory, which can cause leaking confidential information. Cisco recommends users to update as soon as possible. According to Shadow Server are available in Netherlands 17,000 vulnerable routers in Belgium goes that to around five thousand. It is unknown where routers are exactly; Shadow Server collects only IP addresses of the devices.


In: A Technology & Gadgets Asked By: [23616 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »