Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

IOS Vulnerability

Is the following IOS version vulnerable to below security cavet?

http://www.cisco.com/warp/public/707/cisco-sa-20070124-crafted-ip-option.shtml

IOS (tm) C2600 Software (C2600-I-M), Version 12.3(9), RELEASE SOFTWARE (fc2)

The router in on internet segment running IPv4

Thank You.

1 ACCEPTED SOLUTION

Accepted Solutions

Re: IOS Vulnerability

Hi,

You're OK - the fix first appeared in 12.3(8).

HTH - plz rate if useful.

Andrew.

6 REPLIES

Re: IOS Vulnerability

Hi,

You're OK - the fix first appeared in 12.3(8).

HTH - plz rate if useful.

Andrew.

New Member

Re: IOS Vulnerability

I have several 7200s that may be vulnerable. What exactly would I see if the router was 'attacked'?

Thanks,

Steve

http://www.networking-forum.com

Re: IOS Vulnerability

Hi,

I'm not aware of any exploits in the field that take advantage of this (that's not to say that there aren't any..) so it's hard to say apart from what's in the advisory. (i.e. DoS, router reloading, execution of arbitrary code..)

HTH

Andrew.

New Member

Re: IOS Vulnerability

Andrew, thanks for the reply.

I have had 5-15 core router reboots due to ROM error over the past 2 days all with the same hex code. Since I applied the transit ACL on all my transit links last night I haven't had anymore. I fairly certain at this point, we were being affected by this exploit.

Now to upgrade 50-60 VXRs and GSRs. :)

Thanks,

Steve

http://www.networking-forum.com

New Member

Re: IOS Vulnerability

New Member

Re: IOS Vulnerability

All problem fix version is 12.3(19)

This will fix all the three vulnerabilities.

Verison 12.3(9) is not vulnerable to Crafted IP Option Vulnerability but its vulnerable to other 2.

248
Views
0
Helpful
6
Replies
CreatePlease to create content