[98467] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

PoC Exploit Now Available for Cisco NHRP Vulnerability

daemon@ATHENA.MIT.EDU (Paul Ferguson)
Thu Aug 9 13:37:10 2007

From: "Paul Ferguson" <fergdawg@netzero.net>
Date: Thu, 9 Aug 2007 17:35:54 GMT
To: nanog@nanog.org
Errors-To: owner-nanog@merit.edu


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

If you're using NHRP and haven't patched, it might be a good
idea to do so real soon now.

A proof of concept exploit is now avialable which can crash a router
configured with NHRP authentication enabled:

 http://www.milw0rm.com/exploits/4272

Cisco security advisory from yesterday:


http://www.cisco.com/en/US/products/products_security_advisory09186a0080=
899
63b.shtml

FYI,

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.2 (Build 2014)

wj8DBQFGu1BKq1pz9mNUZTMRAglTAKCEGkQG0pZIn8OAZUPTv3mgFcJxgACg/5qt
AIreKsDjLlFGJNSOthmhinU=3D
=3DZbWR
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[98467] in North American Network Operators' Group

PoC Exploit Now Available for Cisco NHRP Vulnerability

daemon@ATHENA.MIT.EDU (Paul Ferguson)Thu Aug 9 13:37:10 2007

daemon@ATHENA.MIT.EDU (Paul Ferguson)
Thu Aug 9 13:37:10 2007