IP: re Security flaw found in Alcatel's high-speed modems: [risks] Risks Digest 21.35

[Dave Farber <dave () farber net>]

> Date: Mon, 23 Apr 2001 21:19:42 -0400 (EDT)
> From: elijah wright <elw () stderr org>
> To: farber () cis upenn edu
> Subject: Re: IP: Security flaw found in Alcatel's high-speed modems: [risks]
>   Risks Digest 21.35
>
>
> > > Computer Emergency Response Team. The point, continued Liberation, is
> > > simple. Anyone can penetrate a computer system linked to the Internet by
> > > Alcatel 1000 ADSL and Speed Touch Home modems.
>
> this is a publicity-seeking overstatement, dave- the bugtraq reports have
> stated that the modems are vulnerable to remote control by an attacker,
> not the systems attached to the modems.  for example, a remote attacker
> can disable your modem completely, possibly overwriting the firmware
> on-board the modem itself with garbage.
>
> essentially, this is an inflated report of vulnerability in a product that
> doesn't even directly interact with the functionality that would be
> affected by an attempted 'penetration'- at least, not as we typically
> refer to intrusions...
>
> elijah



For archives see: http://www.interesting-people.org/