Full Disclosure mailing list archives
Re: [NANOG] IOS rootkits
From: Valdis.Kletnieks () vt edu
Date: Tue, 20 May 2008 21:11:04 -0400
On Tue, 20 May 2008 23:49:33 BST, n3td3v said:
How can you say the cyber world is unlikely to end when Cisco is the most widely used router on the internet today? Everyone uses Cisco, all the ISP's and everyone.
Except for the people who use Juniper, or.... Anyhow - if you can explain how it is *ANY DIFFERENT* than the situation after Lynn's talk, where he basically gave the way to shellcode IOS, and why the existence of cookie-cutter shellcode for IOS didn't break the net, but rootkits will? Hint - to rootkit a Cisco, you first have to shellcode it. And the ability to do *THAT* has been there for years.
Even if the in the know guys secure their routers, there is still a hell of a lot of people who won't and a rootkit for Cisco will damage the internet, e-commerce and government!!!
Yes, exactly the *SAME* way that the Cisco world fell apart after Lynn's talk.
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: [NANOG] IOS rootkits, (continued)
- Re: [NANOG] IOS rootkits n3td3v (May 20)
- Re: [NANOG] IOS rootkits Valdis . Kletnieks (May 20)
- Re: [NANOG] IOS rootkits n3td3v (May 20)
- Re: [NANOG] IOS rootkits Dr. J Swift (May 20)
- Re: [NANOG] IOS rootkits n3td3v (May 20)
- Re: [NANOG] IOS rootkits A . L . M . Buxey (May 21)
- Re: [NANOG] IOS rootkits mutiny (May 22)
- Re: [NANOG] IOS rootkits n3td3v (May 21)
- Re: [NANOG] IOS rootkits Anders B Jansson (May 21)
- Re: [NANOG] IOS rootkits mutiny (May 22)
- Re: [NANOG] IOS rootkits Valdis . Kletnieks (May 20)
- Re: [NANOG] IOS rootkits A . L . M . Buxey (May 21)
- Re: [NANOG] IOS rootkits Dr. J Swift (May 20)
- Re: [NANOG] IOS rootkits n3td3v (May 20)