ShopharShoGood
February 12th, 2002, 05:25 PM
CERT says : " Software bugs in SNMP could bring entire Net down.."
Basic network flaw threatens Net's users
02-12-2002 1:15:31 PM CST - by Robert Lemos Staff Writer, CNET News.com
Software bugs in a fundamental language of the Internet could leave routers, switches and even PCs open to attack, an Internet security watchdog said Tuesday. The problems affect the Simple Network Management Protocol, or SNMP, a basic language used to talk to routers, switches, printers and other managed network devices to allow network engineers to glean status and performance information.
Products from more than 200 makers of Internet-connected hardware are affected by the flaw, said Martin Lindner, team leader for incident handling at the Computer Emergency Response Team (CERT) Coordination Center, a major Internet security watchdog. "It is a very prevalent protocol," Lindner said. 'It's used everywhere." The software vulnerabilities could be exploited to varying effect, Lindner added. In some cases, PCs, routers and other devices could be shut down or cut off from the Internet. "In the extreme case, you could exploit a buffer overflow to take control of the device," Lindner said.....continued.....
http://www.securitynewsportal.com/cgi-bin/cgi-script/csNews/csNews.cgi?database=JanF%2edb&command=viewone&id=54&op=t
???
Basic network flaw threatens Net's users
02-12-2002 1:15:31 PM CST - by Robert Lemos Staff Writer, CNET News.com
Software bugs in a fundamental language of the Internet could leave routers, switches and even PCs open to attack, an Internet security watchdog said Tuesday. The problems affect the Simple Network Management Protocol, or SNMP, a basic language used to talk to routers, switches, printers and other managed network devices to allow network engineers to glean status and performance information.
Products from more than 200 makers of Internet-connected hardware are affected by the flaw, said Martin Lindner, team leader for incident handling at the Computer Emergency Response Team (CERT) Coordination Center, a major Internet security watchdog. "It is a very prevalent protocol," Lindner said. 'It's used everywhere." The software vulnerabilities could be exploited to varying effect, Lindner added. In some cases, PCs, routers and other devices could be shut down or cut off from the Internet. "In the extreme case, you could exploit a buffer overflow to take control of the device," Lindner said.....continued.....
http://www.securitynewsportal.com/cgi-bin/cgi-script/csNews/csNews.cgi?database=JanF%2edb&command=viewone&id=54&op=t
???