[176933] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Ars breaks Misfortune Cookie vulnerability news to public

daemon@ATHENA.MIT.EDU (Jay Ashworth)
Fri Dec 19 17:54:11 2014

X-Original-To: nanog@nanog.org
Date: Fri, 19 Dec 2014 17:54:03 -0500 (EST)
From: Jay Ashworth <jra@baylink.com>
To: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

While the flaw is 12 years old and the fix 9, the article suggests that
firmware for consumer routers may yet be being built with the vulnerable
webserver code baked in.

If you are responsible for lots of eyeballs you might want to look at this.

http://arstechnica.com/security/2014/12/12-million-home-and-business-routers-vulnerable-to-critical-hijacking-hack/

Have a nice Christmas weekend.  :-)

Cheers,
-- jra

-- 
Jay R. Ashworth                  Baylink                       jra@baylink.com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates       http://www.bcp38.info          2000 Land Rover DII
St Petersburg FL USA      BCP38: Ask For It By Name!           +1 727 647 1274


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[176933] in North American Network Operators' Group

Ars breaks Misfortune Cookie vulnerability news to public

daemon@ATHENA.MIT.EDU (Jay Ashworth)Fri Dec 19 17:54:11 2014

daemon@ATHENA.MIT.EDU (Jay Ashworth)
Fri Dec 19 17:54:11 2014