Feeds

Protocol switch security risk in Cisco IOS

Cute, but far from devastating

  • alert
  • submit to reddit

Securing Web Applications Made Simple and Scalable

Don't hold the front page: a vulnerability in a Cisco security software package for routers has been discovered - but the risk is moderate.

In a security notice issued today, Cisco said its IOS Firewall Feature Set (also known as Context Based Access Control [CBAC]), has a vulnerability which permits traffic to flow when it should be blocked by dynamic access control lists.

When Cisco's Firewall Feature Set software builds up a table of connections it has "allowed", it forgets to check the protocol type on subsequent connections. So, for example, if you allow UDP port 514 (syslog) through, you also permit TCP port 514 (rsh) through.

A Cisco customer discovered the bug but the networking giant is not aware of any malicious exploitation of the problem.

Russ Spooner, a security consultant at network security specialists Interrorem, described the vulnerability as "cute", but far from devastating.

"I can see a scenario where a Trojan could be used to trick a victim to opening a large number of UDP connections with a malicious host, which might permit the malicious host to back connect using TCP," said Spooner. But there are easier ways to control Trojans and an attacker would still need to plant malicious code on a victim's network.

Roy Hills, testing development director at security consultants NTA Monitor, said: "In my experience, very few people actually use Cisco Firewall Feature Set as a firewall, even though it is sometimes sold as such. The only people that I know who use this firewalling feature use it in conjunction with another firewall."

Confusingly the problem doesn't apply to Cisco PIX Firewall product, only a security component of its IOS software, which runs on routers and switches.

No immediate workaround for the problem is available but Cisco has produced a schedule for updating its Cisco IOS software, within an advisory that explains the issue in much greater technical depth. ®

Related stories

SSH hits the fan for Cisco on security
Multiple flaws in Cisco router software exposed
Cisco routers vulnerable to easy attack
Defending against SYN-flood DoS attacks
DoS attacks getting scary, CERT warns

External links

Cisco's advisory which, if anything, implies the problem is more serious than it really is

Mobile application security vulnerability report

More from The Register

next story
NEW, SINISTER web tracking tech fingerprints your computer by making it draw
Have you been on YouPorn lately, perhaps? White House website?
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Black Hat anti-Tor talk smashed by lawyers' wrecking ball
Unmasking hidden users is too hot for Carnegie-Mellon
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
NUDE SNAPS AGENCY: NSA bods love 'showing off your saucy selfies'
Swapping other people's sexts is a fringe benefit, says Snowden
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
prev story

Whitepapers

Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.