CISCO urges Network Administrators to validate their Router Software

Bit9

Enterprise Application Whitelisting

Current Articles | RSS Feed

CISCO urges Network Administrators to validate their Router Software

Posted by Doug Spear on Sun, Mar 22, 2009

Email Article |

Twitter |

Google Buzz |

digg it |

Earlier this year at EuSecWest 08, Sebastian Muñiz of Core Security has demonstrated how to unpack and repackage Cisco IOS binaries. Effectively this showcases how rootkits can be embedded inside a valid Cisco IOS image. There are valid uses for this, especially when it comes to debugging, troubleshooting or penetration testing. But the upside potential is staggering, especially given the proliferation of fake Cisco hardware sporting fake CISCO software. Even US Government is aware of tainted hardware that has made it into Government purchasing streams.

In their defense, Cisco has published a guide for Network Administrators urging them to double check MD5 hashes of their router software. Now what happens if Cisco OS components are customized?

COMMENTS

Currently, there are no comments. Be the first to post one!

Post Comment
Name *
Email *
Website (optional)
Comment * Allowed tags: <a> link, <b> bold, <i> italics
Receive email when someone replies. Subscribe to this blog by email.

Subscribe by Email

Your email:

Latest Posts

Posts by Month

2010
- September
- August
- July
- June
- May
- April
- March
- February
- January
2009
- November
- August
- March
- February
- January
2008
- November
- October
- September
- August
- July
- June
- April
- March
- February
2007
- November
- October
- September
- August
- June
- April
2006