|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Povl H. Pedersen (pedersen
NETGUIDE.DK)Date: Fri Apr 20 2001 - 04:56:17 CDT
Just found a strange bug in Cisco CBOS on the Cisco 677 ADSL router.
cbos#sh ver
Cisco Broadband Operating System
CBOS (tm) 677 Software (C677-I-M), Version v2.3.0.053 - Release Software
Copyright (c) 1986-2000 by cisco Systems, Inc.
Compiled Feb 13 2000 17:19:50
DMT firmware version 0x2219be04
NVRAM image at 0x1032cd00
I had doing a "sh nat" with a very long listing in one telnet session.
When I telnetted from another machine, the c677 switched output to
that connection before prompting for password.
The listing would continue in whatever telnet window had the last
keypress. Also seemd to screw up something on the first terminal.
I see this as a serious security flaw.
-- _______________________________________________________________M E T R O C O M I A Denmark - Uganda - Malaysia - Bangladesh Member of the Catenas Global Network
Povl H. Pedersen, CTO E-mail: pope
Metrocomia A/S Aaboulevarden 70,4., DK-8000 Aarhus C, Denmark Phone: +45 86 76 23 33 - Fax: +45 86 76 23 32 URL Denmark: http://www.metrocomia.dk URL International: http://www.metrocomia.com
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]