SoylentNews is people
SoylentNews
from the don't-let-your-router's-memory-get-too-tired dept.
Attackers are trying to exploit a high-severity zeroday in Cisco gear:
Telecoms and data-center operators take note: attackers are actively trying to exploit a high-severity zeroday vulnerability in Cisco networking devices, the company warned over the weekend.
The security flaw resides in Cisco's iOS XR Software, an operating system for carrier-grade routers and other networking devices used by telecommunications and data-center providers. In an advisory published on Saturday, the networking-gear manufacturer said that a patch is not yet available and provided no timeline for when one would be released.
CVE-2020-3566, as the vulnerability is tracked, allows attackers to "cause memory exhaustion, resulting in instability of other processes" including but not limited to interior and exterior routing protocols. Exploits work by sending maliciously crafted Internet Group Management Protocol traffic. Normally, IGMP communications are used by one-to-many networking applications to conserve resources when streaming video and related content. A flaw in the way iOS XR Software queues IGMP packets makes it possible to consume memory resources.
"An attacker could exploit this vulnerability by sending crafted IGMP traffic to an affected device," Saturday's advisory stated. "A successful exploit could allow the attacker to cause memory exhaustion, resulting in instability of other processes. These processes may include, but are not limited to, interior and exterior routing protocols."
[...] The advisory provides indicators that users can check to look for evidence they're under attack. The document says there are no workarounds available to use until a patch can be installed. It does, however, list things administrators can do to mitigate the effects.
Link to the Common Vulnerabilities and Exposures entry for: CVE-2020-3566.
(Score: -1, Offtopic) by Anonymous Coward on Sunday September 06 2020, @10:18PM (7 children)
What is the race of the attackers? Are they chinks, kikes, sand niggers, japs, or some other form of nigger-like criminal?
(Score: -1, Offtopic) by Anonymous Coward on Sunday September 06 2020, @10:37PM
gay
(Score: 1, Insightful) by Anonymous Coward on Sunday September 06 2020, @11:32PM (5 children)
Often wonder what the point of comments like this are. They aren't funny, or rage inducing, or even remotely insulting because it's so childish.
I would expect some sort of personal satisfaction to need some kind of reaction from the audience but all it gets is a -1 mod and that's it. It's just odd.
(Score: -1, Offtopic) by Anonymous Coward on Sunday September 06 2020, @11:37PM
I asked because I want to know the race of the attackers. Now can you answer the question or not?
(Score: 1, Insightful) by Anonymous Coward on Sunday September 06 2020, @11:40PM (1 child)
It is a desperate cry for attention, when nothing else works.
(Score: -1, Offtopic) by Anonymous Coward on Monday September 07 2020, @12:36AM
Why is it so hard for you to answer the question? I asked because I want to know the race of the attackers. This isn't difficult to understand for people of at least normal intelligence.
(Score: 1, Funny) by Anonymous Coward on Monday September 07 2020, @12:04AM
Hey, Precedential adviser Stephan Miller is on SN, posting as AC! Welcome, you racist hosebag!
(Score: 0) by Anonymous Coward on Monday September 07 2020, @05:25AM
I think the idea is habituation. After time you get habituated to these automatic banal responses.
If you read The Sun or The Daily Mirror in the UK then you are well aware. Whenever they mention a women, could be an old lady, they put in brackets (36-34-38, age 67). After a while you kind of find you need that information when reading about women. Congratulations, you have been brain-washed a little bit. Enjoy.